Kirill89 / CVE-2022-22965-PoC

Related projects: ⓘ

• jbaines-r7 / spring4shell_vulnapp
  Intentionally Vulnerable to Spring4Shell
  ☆51Updated 2 years ago
• EdoardoVignati / java-deserialization-of-untrusted-data-poc
  Some PoC (Proof-of-Concept) about vulnerability of java deserialization of untrusted data
  ☆26Updated 3 years ago
• synacktiv / burp-jq
  Burp extension to filter JSON on the fly with JQ queries in the HTTP message viewer.
  ☆42Updated 3 years ago
• minamo7sen / burp-JS-Miner
  This tool tries to find interesting stuff inside static files; mainly JavaScript and JSON files.
  ☆54Updated last year
• pimps / gopher-tomcat-deployer
  Gopher Tomcat Deployer
  ☆47Updated 5 years ago
• JavanXD / Demo-Exploit-Jackson-RCE
  Exploiting CVE-2017-7525 demo project with Angular7 frontend and Spring.
  ☆17Updated 5 years ago
• PortSwigger / sqlmap-dns-collaborator
  Burp Extension that lets you use Burp Collaborator as a DNS server for exfiltrating data via Sqlmap
  ☆36Updated 2 years ago
• usdAG / slipit
  Utility for creating ZipSlip archives
  ☆66Updated last year
• wfinn / redirex
  tool that generates bypasses for open redirects
  ☆47Updated 2 years ago
• peterjson31337 / tetctf2021
  tetctf2020_amf_writeups
  ☆23Updated 3 years ago
• gquere / CVE-2020-7931
  Hacking Artifactory with server side template injection
  ☆50Updated 4 years ago
• xvnpw / k8s-CVE-2021-43557-poc
  PoC for CVE-2021-43557
  ☆21Updated 2 years ago
• knqyf263 / CVE-2021-40346
  CVE-2021-40346 PoC (HAProxy HTTP Smuggling)
  ☆38Updated 3 years ago
• hackvertor / taborator
  A Burp extension to show the Collaborator client in a tab
  ☆22Updated last year
• Mr-xn / CVE-2022-24112
  CVE-2022-24112：Apache APISIX apisix/batch-requests RCE
  ☆44Updated 2 years ago
• Metnew / write-ups
  ☆33Updated 2 years ago
• synacktiv / CVE-2021-40539
  Exploitation code for CVE-2021-40539
  ☆46Updated 2 years ago
• synacktiv / mojarragadget
  ☆16Updated 2 years ago
• kahla-sec / CVE-2021-27850_POC
  A Proof of concept for CVE-2021-27850 affecting Apache Tapestry and leading to unauthencticated remote code execution.
  ☆5Updated last year
• p1ckzi / CVE-2022-22965
  spring4shell | CVE-2022-22965
  ☆22Updated 2 years ago
• chudyPB / XStream-Gadgets
  Several XStream gadgets ported from ysoserial
  ☆32Updated 2 years ago
• pprietosanchez / CVE-2020-14750
  PoC para las vulnerabilidades CVE-2020-14750 y cve-2020-14882
  ☆46Updated 3 years ago
• Haxel0rd / haxel0rds
  Some private tools i decided to release for public.
  ☆49Updated 6 months ago
• JC175 / CVE-2022-32119
  CVE-2022-32119 - Arox-Unrestricted-File-Upload
  ☆17Updated 9 months ago
• intruder-io / rebind-server
  A web server designed to shut off on command to exploit DNS rebinding in Chromium-based browsers
  ☆11Updated last year
• mikaelkall / Exploits
  Exploits developed by Mikael Kall
  ☆46Updated last year
• Mr-xn / CVE-2022-24086
  CVE-2022-24086 about Magento RCE
  ☆36Updated last year
• STMCyber / RmiTaste
  RmiTaste allows security professionals to detect, enumerate, interact and exploit RMI services by calling remote methods with gadgets fro…
  ☆106Updated 3 years ago
• Mike-n1 / tips
  ☆24Updated 3 months ago
• alt3kx / CVE-2022-22965_PoC
  Spring Framework RCE (Quick pentest notes)
  ☆17Updated 2 years ago