Skip to content
/ python-deserialization-attack-payload-generator Public

Peas create serialized payload for deserialization RCE attack on python driven applications where pickle ,pyYAML, ruamel.yaml or jsonpickle module is used for deserialization of serialized data. I will update it with more attack vectors to targets other modules.

License

GPL-3.0 license
103 stars 23 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

j0lt-github/python-deserialization-attack-payload-generator

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

32 Commits
LICENSE
LICENSE
 
 
README.md
README.md
 
 
peas.py
peas.py
 
 
requirements.txt
requirements.txt
 
 

Repository files navigation

Peas

Peas create serialized payload for deserialization RCE attack on python driven applications where pickle,PyYAML, ruamel.yaml or jsonpickle module is used for deserialization of serialized data. I will update it with more attack vectors to targets other modules.
Python 3 is required to run this code.
Usage : python peas.py

Version : 2.3

About

Peas create serialized payload for deserialization RCE attack on python driven applications where pickle ,pyYAML, ruamel.yaml or jsonpickle module is used for deserialization of serialized data. I will update it with more attack vectors to targets other modules.

Topics

python yaml backdoor hacking deserialization rce cmd pickle msfvenom serial-data deserialization-vulnerability pyyaml deserialization-rce-attack attack-vectors python-driven-applications prick ruamel ruamelyaml pysyck

Resources

Readme

License

GPL-3.0 license
Activity

Stars

103 stars

Watchers

1 watching

Forks

23 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages