Skip to content
/ python-deserialization-attack-payload-generator Public

Peas create serialized payload for deserialization RCE attack on python driven applications where pickle ,pyYAML, ruamel.yaml or jsonpickle module is used for deserialization of serialized data. I will update it with more attack vectors to targets other modules.

License

GPL-3.0 license
93 stars 23 forks Branches Tags Activity
Star
Notifications

j0lt-github/python-deserialization-attack-payload-generator

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

32 Commits

LICENSE

LICENSE

 
 

README.md

README.md

 
 

peas.py

peas.py

 
 

requirements.txt

requirements.txt

 
 

Repository files navigation

Peas

Peas create serialized payload for deserialization RCE attack on python driven applications where pickle,PyYAML, ruamel.yaml or jsonpickle module is used for deserialization of serialized data. I will update it with more attack vectors to targets other modules.
Python 3 is required to run this code.
Usage : python peas.py

Version : 2.3

About

Peas create serialized payload for deserialization RCE attack on python driven applications where pickle ,pyYAML, ruamel.yaml or jsonpickle module is used for deserialization of serialized data. I will update it with more attack vectors to targets other modules.

Topics

python yaml backdoor hacking deserialization rce cmd pickle msfvenom serial-data deserialization-vulnerability pyyaml deserialization-rce-attack attack-vectors python-driven-applications prick ruamel ruamelyaml pysyck

Resources

Readme

License

GPL-3.0 license
Activity

Stars

93 stars

Watchers

1 watching

Forks

23 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages