1150037361/SpringScan

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/1150037361/SpringScan)

1150037361 / SpringScan

一个扫描Spring的常见敏感目录的burp suite插件

☆108

Alternatives and similar repositories for SpringScan

Users that are interested in SpringScan are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

metaStor / SpringScan
View on GitHub
SpringScan 漏洞检测 Burp插件
☆607Nov 14, 2023Updated 2 years ago
F6JO / RouteVulScan
View on GitHub
Burpsuite - Route Vulnerable Scanning 递归式被动检测脆弱路径的burp插件
☆1,324Jun 29, 2024Updated last year
0x727 / BypassPro
View on GitHub
对Auth/Waf 自动化bypass的burpsuite插件
☆1,273May 10, 2026Updated last month
amaz1ngday / fastjson-exp
View on GitHub
fastjson利用，支持tomcat、spring回显，哥斯拉内存马；回显利用链为dhcp、ibatis、c3p0。
☆327Mar 15, 2022Updated 4 years ago
1150037361 / DecryptoUtils
View on GitHub
burp解密插件
☆10Jun 9, 2023Updated 3 years ago
Wordpress hosting with auto-scaling - Free Trial Offer • Ad
Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
mrknow001 / BurpAppletPentester
View on GitHub
SessionKey解密插件
☆326May 8, 2023Updated 3 years ago
vaycore / OneScan
View on GitHub
OneScan 是一款用于递归目录扫描的 BurpSuite 插件
☆1,251Jun 24, 2025Updated 11 months ago
winezer0 / passive-scan-client-plus
View on GitHub
burpsuite passive-scan-client 插件持续维护分支 v2024
☆90Aug 16, 2025Updated 9 months ago
fKzhangsa / FilterJs
View on GitHub
Burp的JS API接口过滤插件
☆127Dec 27, 2023Updated 2 years ago
libaibaia / cloudSec
View on GitHub
云安全利用工具-云平台AK/SK-WEB利用工具，添加AK/SK自动检测资源，无需手动执行，支持云服务器、存储桶、数据库操作
☆595Dec 19, 2024Updated last year
c0r1 / BypassPro
View on GitHub
AutoBypass403-BurpSuite 插件二开重构，优化执行逻辑
☆306Oct 12, 2024Updated last year
smxiazi / xia_sql
View on GitHub
xia SQL (瞎注) burp 插件，在每个参数后面填加一个单引号，两个单引号，一个简单的判断注入小插件。
☆1,267May 18, 2023Updated 3 years ago
zangcc / Aakian-FaCai
View on GitHub
基于前端vue框架的JavaFx图形化GUI漏洞扫描工具，支持一键扫描vue-manage-system系统前端泄露的未授权目录接口漏洞，并且对扫描的暴露目录进行逐一测试和验证，方便渗透人员快速确定未授权接口。还添加了出口IP地址信息本地DNS信息等的查询，方便清楚自身出口…
☆284Aug 11, 2023Updated 2 years ago
KimJun1010 / WeblogicTool
View on GitHub
WeblogicTool，GUI漏洞利用工具，支持漏洞检测、命令执行、内存马注入、密码解密等（深信服深蓝实验室天威战队强力驱动）
☆1,791Nov 1, 2023Updated 2 years ago
Managed hosting for WordPress and PHP on Cloudways • Ad
Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
f0ng / selistener
View on GitHub
用于解决判断出网情况的问题，以http、ldap、rmi以及socket形式批量监听端口，在web界面进行结果查看
☆126Apr 17, 2023Updated 3 years ago
winezer0 / EditHttpMsgDemoWithUI
View on GitHub
burpsuite 插件 HTTP流量包编辑Demo
☆15Mar 30, 2026Updated 2 months ago
F6JO / JsRouteScan
View on GitHub
Burpsuite - Js Route Scan 正则匹配获取响应中的路由进行被动探测与递归目录探测的burp插件
☆375Jun 7, 2024Updated 2 years ago
Lotus6 / JavaGadgetGenerator
View on GitHub
JavaGadgetGenerator 工具，支持 ysoserial，Hessian，字节码，Expr/SSTI，Shiro，JDBC 等 Gadget 生成，封装，混淆，出网延迟探测，内存马注入等...
☆571Apr 3, 2026Updated 2 months ago
whwlsfb / SpringSpider
View on GitHub
Spring Actuator端点的BurpSuite被动扫描插件。
☆202Nov 2, 2022Updated 3 years ago
smxiazi / xia_Yue
View on GitHub
burp 插件 xia_Yue（瞎越）主要用于测试越权、未授权
☆694Aug 27, 2024Updated last year
LittleBear4 / Find-SomeThing
View on GitHub
红队批量脆弱点搜集工具
☆334Jun 6, 2023Updated 3 years ago
GhostTroops / ksubdomain
View on GitHub
子域名爆破，增加了智能爬虫功能
☆70Mar 22, 2024Updated 2 years ago
AgeloVito / self_delete_bof
View on GitHub
BOF implementation of delete self poc that delete a locked executable or a currently running file from disk by its pid, path, or the curr…
☆79Jul 23, 2023Updated 2 years ago
Wordpress hosting with auto-scaling - Free Trial Offer • Ad
Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
dark-kingA / superSearchPlus
View on GitHub
superSearchPlus是聚合型信息收集插件，支持综合查询，资产测绘查询，信息收集敏感信息提取 js资源扫描目录扫描 vue组件扫描整合了目前常见的资产测绘平台专为白帽子提供快速侦测目标。
☆1,441Dec 16, 2024Updated last year
Hel10-Web / Databasetools
View on GitHub
一款用Go语言编写的数据库自动化提权工具，支持Mysql、MSSQL、Postgresql、Oracle、Redis数据库提权、命令执行、爆破以及ssh连接
☆866Aug 30, 2023Updated 2 years ago
pmiaowu / log4j2Scan
View on GitHub
用于帮助企业内部快速扫描log4j2的jndi漏洞的burp插件
☆211Apr 18, 2023Updated 3 years ago
WuliRuler / SBSCAN
View on GitHub
🎭 SBSCAN是一款专注于spring框架的渗透测试工具，可以对指定站点进行springboot未授权扫描/敏感信息扫描以及进行spring框架漏洞扫描与验证的综合利用工具。 [SBSCAN is a penetration testing tool focu…
☆103May 19, 2025Updated last year
kuang-zy / 2023-Weaver-pocs
View on GitHub
2023泛微0A漏洞poc检测工具
☆39Aug 6, 2023Updated 2 years ago
pureqh / Hyacinth
View on GitHub
一款java漏洞集合工具
☆1,127Jan 13, 2026Updated 4 months ago
SummerSec / ShiroAttack2
View on GitHub
shiro反序列化漏洞综合利用（仅限授权测试使用）
☆2,535Jun 4, 2026Updated last week
Maskhe / FastjsonScan
View on GitHub
一个简单的Fastjson反序列化检测burp插件
☆976Jun 18, 2021Updated 4 years ago
wyzxxz / heapdump_tool
View on GitHub
heapdump敏感信息查询工具，例如查找 spring heapdump中的密码明文，AK,SK等
☆1,447May 21, 2024Updated 2 years ago
Deploy on Railway without the complexity - Free Credits Offer • Ad
Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
novysodope / ST2Scanner
View on GitHub
Struts2漏洞扫描 Burp插件
☆132Mar 21, 2023Updated 3 years ago
TryGOTry / DogCs4.4
View on GitHub
cs4.4修改去特征狗狗版(美化ui,去除特征,自带bypass核晶截图等..)
☆572Jan 17, 2023Updated 3 years ago
L10nK1n6 / LazyDog
View on GitHub
LazyDog是一款通过网络空间测绘引擎读取资产并进行指纹识别的工具
☆40Mar 20, 2023Updated 3 years ago
LittleBear4 / OA-EXPTOOL
View on GitHub
OA综合利用工具，集合将近20款OA漏洞批量扫描
☆1,344Oct 28, 2023Updated 2 years ago
zhaoyumi / WeaverExploit_All
View on GitHub
泛微最近的漏洞利用工具（PS：2023）
☆479Dec 14, 2023Updated 2 years ago
carl1l / f403
View on GitHub
用于渗透测试中对40x页面进行bypass并发扫描,采用go编写
☆261Mar 25, 2023Updated 3 years ago
White-hua / Apt_t00ls
View on GitHub
高危漏洞利用工具
☆1,833Feb 12, 2025Updated last year