remote-method-guesser

RMI vulnerability scanner

A tool used to identify and exploit security vulnerabilities in Java RMI endpoints

Java RMI Vulnerability Scanner

GitHub

841 stars
6 watching
109 forks
Language: Java
last commit: 8 months ago
bruteforcecodebase-attackscve-2019-2684deserializationdeserialization-attacksjava-rmipentestingremote-method-guessingrmgrmirmi-registryrmi-serversecurity

Related projects:

Repository Description Stars
nickstadb/barmie An enumeration and attack tool for insecure RMI services 720
waderwu/attackrmi A tool designed to exploit vulnerabilities in the Java RMI system using various techniques such as deserialization and socket-based attacks. 251
m0nad/hellraiser Scans networks to identify vulnerabilities by correlating CPEs with CVEs using an API 562
mogwailabs/rmi-deserialization Demonstrating vulnerabilities in Java RMI services 101
jackofmosttrades/gadgetinspector Analyzes Java applications for potential deserialization gadget chains to help identify vulnerabilities and prioritize remediation. 1,005
hackthelegacy/hack400tool A set of tools for gathering information and exploiting vulnerabilities in IBM Power Systems 97
zt2/sqli-hunter A tool that automates the process of detecting and exploiting SQL injection vulnerabilities in web applications. 425
kapejod/rtpnatscan A command line tool to scan RTP proxies for vulnerabilities to NAT stealing attacks 24
fkie-cad/cwe_checker A tool for detecting common bugs in binary executables. 1,155
osamahamad/cve-2020-9484-mass-scan A tool designed to scan a list of URLs against Apache Tomcat deserialization vulnerabilities that could lead to Remote Code Execution. 32
nmilcoff/breachdetector A tool for detecting and analyzing security vulnerabilities in Xamarin mobile applications 89
directdefense/superserial A Burp Suite Extender to identify Java Deserialization vulnerabilities in client requests and server responses. 9
r0075h3ll/oralyzer A tool to identify vulnerabilities in web applications by probing for Open Redirections and other types of attacks. 758
bishopfox/gadgetprobe Tools for analyzing and exploiting vulnerabilities in Java deserialization vulnerabilities 587
freefv/tencent_yun_tools A collection of Python scripts to exploit vulnerabilities in Tencent Cloud services using an AccessKey 34