ysoserial Logo

ysoserial

0
Free
Updated 11 March 2025
Malware Analysis
Java
Deserialization
Vulnerability
Exploit
Payload
Security Research
Visit Website

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization. This tool is designed to help developers and security researchers identify and exploit vulnerabilities in Java applications. ysoserial is a command-line tool that generates payloads for various Java deserialization vulnerabilities, including those in Apache Commons Collections, Apache Commons BeanUtils, and others. ysoserial is a powerful tool for identifying and exploiting Java deserialization vulnerabilities, and can be used by developers, security researchers, and penetration testers to improve the security of their applications. ysoserial is available for download on GitHub.

FEATURES

EXPLORE BY TAGS

Java

Deserialization

Vulnerability

Exploit

Payload

Security Research

SIMILAR TOOLS

extended-xss-search Logo
extended-xss-search

A better version of my xssfinder tool that scans for different types of XSS on a list of URLs.

Free
Malware Analysis
CAPE Logo
CAPE

Malware sandbox for executing malicious files in an isolated environment with advanced features.

Free
Malware Analysis
YaraParser Logo
YaraParser

Python 3 tool for parsing Yara rules with ongoing development.

Free
Malware Analysis
CDI_yara Logo
CDI_yara

A collection of YARA rules for public use, built from intelligence profiles and file work.

Free
Malware Analysis
bohops Leveraging INF-SCT Fetch & Execute Techniques For Bypass, Evasion, & Persistence Logo
bohops Leveraging INF-SCT Fetch & Execute Techniques For Bypass, Evasion, & Persistence

A blog post discussing INF-SCT fetch and execute techniques for bypass, evasion, and persistence

Free
Malware Analysis
Joe Sandbox (Community) Logo
Joe Sandbox (Community)

Joe Sandbox Community provides automated cloud-based malware analysis across multiple OS platforms.

Free
Malware Analysis
Checksec Logo
Checksec

Checksec is a bash script to check the properties of executables like PIE, RELRO, Canaries, ASLR, Fortify Source.

Free
Malware Analysis
floss Logo
floss

A tool that extracts and deobfuscates strings from malware binaries using advanced static analysis techniques.

Free
Malware Analysis
Polichombr Logo
Polichombr

A collaborative malware analysis framework with various features for automated analysis tasks.

Free
Malware Analysis

PINNED

Mandos Logo

Mandos

Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.

Consulting
Checkmarx SCA Logo

Checkmarx SCA

A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Application Security
Orca Security Logo

Orca Security

A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

Cloud Security
DryRun Logo

DryRun

A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

Application Security
CyberSecTools logoCyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Operated by:

Mandos Cyber • KVK: 97994448

Netherlands • contact@mandos.io

VAT: NL005301434B12

Copyright © 2025 - All rights reserved

LINKS
BlogContact
LEGAL
Terms of servicesPrivacy policy