GitHub

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

Originally released as part of AppSecCali 2015 Talk "Marshalling Pickles: how deserializing objects will ruin your day" with gadget chains for Apache Commons Collections (3.x and 4.x), Spring ...
IEEE

VeDebug: Regression Debugging Tool for Java

Abstract: Developers spend substantial time debugging their programs, yet debugging is still one of the most tedious activities. Interactive debuggers have been around for as long as computing, but ...
GitHub

POOPS PS5 - BD-J Kernel Exploit & ELF Loader

A complete Java port of the poops_ps5.lua IPv6 UAF kernel exploit originally developed by Gezine and egycnq, based on the ExploitNetControlImpl vulnerability discovered by TheFlow. This project is ...