Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/Coalfire-Research/java-deserialization-exploits

A collection of curated Java Deserialization Exploits
https://github.com/Coalfire-Research/java-deserialization-exploits

cve deserialization-rce exploits java

Last synced: about 2 months ago
JSON representation

A collection of curated Java Deserialization Exploits

Host: GitHub
URL: https://github.com/Coalfire-Research/java-deserialization-exploits
Owner: Coalfire-Research
Created: 2016-05-31T16:23:08.000Z (over 8 years ago)
Default Branch: main
Last Pushed: 2021-05-16T23:10:49.000Z (over 3 years ago)
Last Synced: 2024-04-06T11:35:43.296Z (5 months ago)
Topics: cve, deserialization-rce, exploits, java
Language: Python
Homepage:
Size: 51.5 MB
Stars: 586
Watchers: 43
Forks: 220
Open Issues: 3
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

awesome-hacking-lists - Coalfire-Research/java-deserialization-exploits - A collection of curated Java Deserialization Exploits (Python)

README

# Java Deserialization Exploits
A collection of curated Java Deserialization Exploits

Currently this repo contains exploits for the following vulnerabilities:

- Cisco Prime Infrastructure Java Deserialization RCE (CVE-2016-1291)
- IBM WebSphere Java Object Deserialization RCE (CVE-2015-7450)
- OpenNMS Java Object Deserialization RCE (No CVE ?)
- Jenkins CLI RMI Java Deserialization RCE (CVE-2015-8103)
- Jenkins Groovy XML RCE (CVE-2016-0792)
- Oracle WebLogic Server Java Object Deserialization RCE (CVE-2016-3510)
- JBoss Java Deserialization RCE (CVE-2015-7501)