Alternatives and similar repositories for springshell-rce-poc

Users that are interested in springshell-rce-poc are comparing it to the libraries listed below

• jbaines-r7 / spring4shell_vulnapp
  Intentionally Vulnerable to Spring4Shell
  ☆52Updated 3 years ago
• Kirill89 / CVE-2022-22965-PoC
  ☆31Updated 3 years ago
• Metnew / write-ups
  ☆34Updated 3 years ago
• EdoardoVignati / java-deserialization-of-untrusted-data-poc
  Some PoC (Proof-of-Concept) about vulnerability of java deserialization of untrusted data
  ☆26Updated 4 years ago
• synacktiv / burp-jq
  Burp extension to filter JSON on the fly with JQ queries in the HTTP message viewer.
  ☆48Updated 4 years ago
• hakivvi / ObjectPwnStream
  a Ruby implementation of Java's ObjectInputStream and ObjectOutputStream.
  ☆16Updated 3 years ago
• PalindromeLabs / Java-Deserialization-CVEs
  Compiled dataset of Java deserialization CVEs
  ☆60Updated 5 years ago
• synacktiv / mojarragadget
  ☆15Updated 4 years ago
• ka1n4t / CVE-2020-17530
  ☆65Updated 5 years ago
• j3ssie / codeql-docker
  Ready to use docker image for CodeQL
  ☆90Updated last year
• alt3kx / CVE-2021-26855_PoC
  ☆53Updated 4 years ago
• KTH-LangSec / SerialDetector
  A proof-of-concept tool for detection and exploitation Object Injection Vulnerabilities in .NET applications
  ☆63Updated 4 years ago
• gquere / CVE-2020-7931
  Hacking Artifactory with server side template injection
  ☆51Updated 5 years ago
• peterjson31337 / tetctf2021
  tetctf2020_amf_writeups
  ☆23Updated 4 years ago
• spaceraccoon / spring-boot-actuator-h2-rce
  Sample Spring Boot App Demonstrating RCE via Exposed env Actuator and H2 Database
  ☆107Updated 5 years ago
• hackvertor / taborator
  A Burp extension to show the Collaborator client in a tab
  ☆24Updated 2 years ago
• STMCyber / RmiTaste
  RmiTaste allows security professionals to detect, enumerate, interact and exploit RMI services by calling remote methods with gadgets fro…
  ☆108Updated 5 years ago
• julianvilas / rooted2k15
  Additional materials for RootedCON 2015 Apache Struts talk
  ☆30Updated 10 years ago
• RedSection / jspanda
  client-side prototype pullution vulnerability scanner
  ☆46Updated 4 years ago
• mirfansulaiman / CustomHeader
  This Burp Suite extension allows you to customize header with put a new header into HTTP REQUEST BurpSuite (Scanner, Intruder, Repeater, …
  ☆53Updated 2 years ago
• Al1ex / CVE-2020-35728
  CVE-2020-35728 & Jackson-databind RCE
  ☆42Updated 4 years ago
• FSecureLABS / N1QLMap
  The tool exfiltrates data from Couchbase database by exploiting N1QL injection vulnerabilities.
  ☆77Updated 5 years ago
• orangetw / JNDI-Injection-Bypass
  Some payloads of JNDI Injection in JDK 1.8.0_191+
  ☆10Updated 5 years ago
• GovTech-CSG / ProxyAgent
  ☆64Updated 4 years ago
• gand3lf / semgrepper
  An extension to use Semgrep inside Burp Suite.
  ☆89Updated 6 months ago
• jschauma / check-springshell
  try to determine if a host is vulnerable to SpringShell CVE‐2022‐22965 and CVE‐2022‐22963
  ☆23Updated 3 years ago
• B1anda0 / CVE-2020-8209
  该脚本为Citrix XenMobile 目录遍历漏洞（CVE-2020-8209）批量检测脚本。
  ☆31Updated 5 years ago
• pimps / CVE-2017-1000486
  Primefaces <= 5.2.21, 5.3.8 or 6.0 - Remote Code Execution Exploit
  ☆92Updated last year
• PortSwigger / java-serialized-payloads
  YSOSERIAL Integration with burp suite
  ☆41Updated 3 years ago
• intruder-io / rebind-server
  A web server designed to shut off on command to exploit DNS rebinding in Chromium-based browsers
  ☆16Updated 2 years ago