Disclaimer: JMET is a proof-of-concept tool for blackbox testing of JMS destinations. Please use this tool with care and only when authorized. Be aware that…
Changelog v0.0.5-git: + More Payloads + Fix Jython1 Breaking Java 6 + Some minor improvements + payloads: Don’t use API introduced in Java 7. ysoserial…
yeah.. we wrote againt ws-attacker for analyze & studying; Big Data, XML SOAPAction, Mobile Service and Data Compression in Network Services on Mobile App Server/Front-End…
IntelliDroid is tool aimed to extract call paths leading to specific behavior in an Android application, and to execute these paths precisely during run time….
TLS-Attacker is a Java-based framework for analyzing TLS libraries. It is able to send arbitrary protocol messages in an arbitrary order to the TLS peer,…
Changelog v0.0.4 borderline-beta: + Added Apache Commons Beanutils gadget chain. ysoserial is a collection of utilities and property-oriented programming “gadget chains” discovered in common java…
Changelog v0.0.3: + Refactors and included new JRE <= 1.7u21 gadget chain ysoserial is a collection of utilities and property-oriented programming “gadget chains” discovered in…
Spring framework is commonly used 3rd party library used by many java server projects. If spring-tx.jar, spring-commons.jar and javax.transaction-api.jar are in your class path, and…