A vast collection of security tools for bug bounty, pentest and red teaming

#deserialization

6 results
Freddy Deserialization Bug Finder on offsec.tools
Freddy Deserialization Bug Finder

A Burp Suite extension to aid in detecting and exploiting serialisation libraries/APIs.

#burpsuite   #deserialization   #dotnet   #java  

Java Deserialization Scanner on offsec.tools
Java Deserialization Scanner

All-in-one plugin for the detection and exploitation of Java deserialization vulnerabilities.

#deserialization   #java   #scanner  

PHPGGC on offsec.tools
PHPGGC

PHP unserialize() payloads along with a tool to generate them.

#deserialization   #payloads   #php  

ysoserial.net on offsec.tools
ysoserial.net

Deserialization payload generator for a variety of .NET formatters.

#deserialization   #dotnet   #payloads  

GadgetProbe on offsec.tools
GadgetProbe

Probe endpoints consuming Java serialized objects for fingerprinting.

#burpsuite   #deserialization   #endpoints   #fingerprint   #java  

ysoserial on offsec.tools
ysoserial

Generates payloads that exploit unsafe Java object deserialization.

#deserialization   #exploits   #java   #payloads