Ysoserial Alternatives

Name: frohoff/ysoserial
Brand: frohoff/ysoserial
SKU: project/frohoff/ysoserial
Rating: 4.94 (7002 reviews)

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

Categories > Data Processing > Vulnerabilities

Suggest Alternative

Stars

7,002

Alternatives

License

mit

Open Issues

Most Recent Commit

over 2 years ago

Programming Language

Java

Dependent Repos

Dependent Packages

Total Releases

Categories

Programming Languages > Java

Security > Vulnerabilities

Security > Exploitation

Data Processing > Deserialization

Site

Repo

Alternatives To frohoff/ysoserial

Project Name	Stars	Repos Using This	Packages Using This	Most Recent Commit	Total Releases	Open Issues	License	Language
frohoff/ysoserial	7,002	0	0	over 2 years ago	0	55	mit	Java
A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
joaomatosf/jexboss	1,470	0	0	about 6 years ago	0	28	other	Python
JexBoss: Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool
wh1t3p1g/ysomap	1,045	0	0	over 2 years ago	0	2	apache-2.0	Java
A helpful Java Deserialization exploit framework.
noperator/CVE-2019-18935	238	0	0	almost 4 years ago	0	2	apache-2.0	Python
RCE exploit for a .NET JSON deserialization vulnerability in Telerik UI for ASP.NET AJAX.
NickstaDB/DeserLab	157	0	0	about 7 years ago	0	1	mit	Java
Java deserialization exploitation lab.
njfox/Java-Deserialization-Exploit	117	0	0	over 9 years ago	0	0	other	Java
mpgn/Rails-doubletap-RCE	100	0	0	about 6 years ago	0	9		Ruby
RCE on Rails 5.2.2 using a path traversal (CVE-2019-5418) and a deserialization of Ruby objects (CVE-2019-5420)
getcode2git/exserial	65	0	0	over 10 years ago	0	0		Python
Java Untrusted Deserialization Exploits Tools
pimps/ysoserial-modified	53	0	0	over 7 years ago	0	0	mit	Java
That repository contains my updates to the well know java deserialization exploitation tool ysoserial.
nuts7/CVE-2023-27372	51	0	0	over 2 years ago	0	0		Python
SPIP before 4.2.1 allows Remote Code Execution via form values in the public area because serialization is mishandled. The fixed versions are 3.2.18, 4.0.10, 4.1.8, and 4.2.1.

Alternatives To frohoff/ysoserial

Select To Compare

frohoff/ysoserial ⭐ 7,002

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

dependent packages 0 total releases 0 most recent commit over 2 years ago

joaomatosf/jexboss ⭐ 1,470

JexBoss: Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool

dependent packages 0 total releases 0 most recent commit about 6 years ago

wh1t3p1g/ysomap ⭐ 1,045

A helpful Java Deserialization exploit framework.

dependent packages 0 total releases 0 most recent commit over 2 years ago

noperator/CVE-2019-18935 ⭐ 238

RCE exploit for a .NET JSON deserialization vulnerability in Telerik UI for ASP.NET AJAX.

dependent packages 0 total releases 0 most recent commit almost 4 years ago

NickstaDB/DeserLab ⭐ 157

Java deserialization exploitation lab.

dependent packages 0 total releases 0 most recent commit about 7 years ago

njfox/Java-Deserialization-Exploit ⭐ 117

dependent packages 0 total releases 0 most recent commit over 9 years ago

mpgn/Rails-doubletap-RCE ⭐ 100

RCE on Rails 5.2.2 using a path traversal (CVE-2019-5418) and a deserialization of Ruby objects (CVE-2019-5420)

dependent packages 0 total releases 0 most recent commit about 6 years ago

getcode2git/exserial ⭐ 65

Java Untrusted Deserialization Exploits Tools

dependent packages 0 total releases 0 most recent commit over 10 years ago

pimps/ysoserial-modified ⭐ 53

That repository contains my updates to the well know java deserialization exploitation tool ysoserial.

dependent packages 0 total releases 0 most recent commit over 7 years ago

nuts7/CVE-2023-27372 ⭐ 51

SPIP before 4.2.1 allows Remote Code Execution via form values in the public area because serialization is mishandled. The fixed versions are 3.2.18, 4.0.10, 4.1.8, and 4.2.1.

dependent packages 0 total releases 0 most recent commit over 2 years ago

Suggest An Alternative To ysoserial

Alternative Project Comparisons

frohoff/ysoserial vs Ysoserial

frohoff/ysoserial vs Jexboss

frohoff/ysoserial vs Ysomap

frohoff/ysoserial vs Cve 2019 18935

frohoff/ysoserial vs Deserlab

frohoff/ysoserial vs Java Deserialization Exploit

frohoff/ysoserial vs Rails Doubletap Rce

frohoff/ysoserial vs Exserial

frohoff/ysoserial vs Ysoserial Modified

frohoff/ysoserial vs Cve 2023 27372

Popular Deserialization Projects

alibaba/fastjson⭐ 25,481

FASTJSON 2.0.x has been released, faster and more secure, recommend you upgrade.

google/gson⭐ 22,750

A Java serialization/deserialization library to convert Java Objects into JSON and back

json-iterator/go⭐ 12,863

A high-performance 100% compatible drop-in replacement of "encoding/json"

marshmallow-code/marshmallow⭐ 6,790

A lightweight library for converting complex objects to and from simple Python datatypes.

bblanchon/ArduinoJson⭐ 6,447

📟 JSON library for Arduino and embedded C++. Simple and efficient.

Popular Exploitation Projects

sqlmapproject/sqlmap⭐ 29,628

Automatic SQL injection and database takeover tool

The-Art-of-Hacking/h4cker⭐ 15,693

This repository is primarily maintained by Omar Santos (@santosomar) and includes thousands of resources related to ethical hacking, bug bounties, digital forensics and incident response (DFIR), artificial intelligence security, vulnerability research, exploit development, reverse engineering, and more.

vitalysim/Awesome-Hacking-Resources⭐ 14,192

A collection of hacking / penetration testing resources to make you better!

sundowndev/hacker-roadmap⭐ 12,086

A collection of hacking tools, resources and references to practice ethical hacking.

threat9/routersploit⭐ 11,667

Exploitation Framework for Embedded Devices

Popular Data Processing Categories

Jupyter Notebook

Dataset

Sql

Validation

Pipeline

Translation

Data Science

Classification

Transaction

Scraper