What is the pricing for ysoserial?

ysoserial is a free Security Operations tool. This makes it accessible for organizations of all sizes, from startups to enterprises. Visit https://github.com/frohoff/ysoserial/ for download and installation instructions.

What are alternatives to ysoserial?

Popular alternatives to ysoserial include: 1. OFFODE - A proof-of-concept Node.js tool that demonstrates automated MFA bypass techniques for Microsoft Outlook accounts using browser automation. (Free) 2. CAI (Cybersecurity AI) - An open-source framework that enables building and deploying AI-powered security automation tools for both offensive and defensive cybersecurity operations using over 300 AI models. (Free) 3. FourCore ATTACK - FourCore ATTACK is an adversary emulation platform to manage cyber risk with evidence (Commercial) 4. GadgetToJScript - A tool that generates .NET serialized gadgets for triggering assembly load and execution through BinaryFormatter deserialization in JavaScript, VBScript, and VBA scripts. (Free) 5. InvalidSign - InvalidSign is a security research tool that bypasses endpoint solutions by obtaining valid signed files with different hashes to evade signature-based detection mechanisms. (Free) Compare these tools and more at https://cybersectools.com/categories/security-operations

Who should use ysoserial?

ysoserial is for security teams and organizations that need Exploit, Payload, Security Research, Java, Vulnerability. It's particularly suitable for small to medium-sized teams looking for cost-effective solutions. Other Security Operations tools can be found at https://cybersectools.com/categories/security-operations

ysoserial

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

8,501

Security Operations Open Source

Visit website

ysoserial

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

Security Operations•Offensive Security

Open Source

Exploit Payload Security Research

8,501stars

GitHub Stars

31 Mar

Last commit

Visit Website

Updated 30 Dec 25

API Access

Build Market Maps, Track Competitors, Monitor Vendors

One API for the largest cybersecurity database. Over 450+ data points per product and company. Updated regularly.

Request Access

ysoserial Description

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization. This tool is designed to help developers and security researchers identify and exploit vulnerabilities in Java applications. ysoserial is a command-line tool that generates payloads for various Java deserialization vulnerabilities, including those in Apache Commons Collections, Apache Commons BeanUtils, and others. ysoserial is a powerful tool for identifying and exploiting Java deserialization vulnerabilities, and can be used by developers, security researchers, and penetration testers to improve the security of their applications. ysoserial is available for download on GitHub.

ysoserial Description

ysoserial FAQ

Common questions about ysoserial including features, pricing, alternatives, and user reviews.

ysoserial is A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.. It is a Security Operations solution designed to help security teams with Exploit, Payload, Security Research.

Have more questions? Browse our categories or search for specific tools.