ysoserial.net
Deserialization payloads
Generates payloads to exploit unsafe .NET object deserialization.
Deserialization payload generator for a variety of .NET formatters
3k stars
75 watching
474 forks
Language: C#
last commit: 5 months ago
Linked from 1 awesome list
vavkamil/awesome-bugbounty-toolsRelated projects:
| Repository | Description | Stars |
|---|---|---|
 frohoff/ysoserial | Generates payloads to exploit unsafe Java object deserialization vulnerabilities | 7,789 |
 artsploit/yaml-payload | A utility for generating deserialization payloads in SnakeYAML format to exploit certain security vulnerabilities | 563 |
 grrrdog/java-deserialization-cheat-sheet | A cheat sheet providing guidance on deserialization vulnerabilities in Java applications | 3,035 |
 lordnoteworthy/al-khaser | A Proof-of-Concept malware application designed to test anti-malware and sandbox systems. | 5,919 |
 netspi/javaserialkiller | A Burp extension that enables Java Deserialization Attacks using a payload generator tool | 208 |
 notsosecure/serializedpayloadgenerator | A tool to generate deserialization payloads for exploiting vulnerabilities in various frameworks | 101 |
 bishopfox/gadgetprobe | Tools for analyzing and exploiting vulnerabilities in Java deserialization vulnerabilities | 585 |
 malwaredllc/byob | An open-source framework for creating custom post-exploitation tools with automated payload generation and platform independence. | 8,989 |
 projectdiscovery/nuclei | A vulnerability scanner built on YAML templates to identify weaknesses in applications and networks. | 20,687 |
 nccgroup/freddy | A tool to detect and exploit deserialization vulnerabilities in Java and .NET applications. | 573 |
 infosecn1nja/maliciousmacromsbuild | Generates malicious macros to bypass application whitelisting and execute powershell or shellcode via MSBuild. | 494 |
 payloadbox/xss-payload-list | A collection of scripts and payloads designed to exploit Cross-Site Scripting (XSS) vulnerabilities in web applications. | 6,366 |
 fsecurelabs/sharpgpoabuse | A .NET application designed to exploit vulnerabilities in Group Policy Objects (GPOs) for malicious purposes. | 1,066 |
 joaomatosf/javadeserh2hc | A lab project providing code samples and tools to understand deserialization vulnerabilities in Java applications. | 491 |
 screetsec/thefatrat | A tool for creating and executing malware payloads on various platforms, including Linux, Windows, Mac, and Android | 9,478 |