Alternatives and similar repositories for spring4shell

Users that are interested in spring4shell are comparing it to the libraries listed below

• s0md3v / Smap
  a drop-in replacement for Nmap powered by shodan.io
  ☆3,131Updated 6 months ago
• krisnova / boopkit
  Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.
  ☆1,642Updated 2 years ago
• jfrog / jfrog-spring-tools
  ☆79Updated 3 years ago
• AgainstTheWest / NginxDay
  Nginx 18.1 04/09/22 zero-day repo
  ☆372Updated 3 years ago
• hillu / local-spring-vuln-scanner
  Simple local scanner for applications containing vulnerable Spring libraries
  ☆126Updated 3 years ago
• NorthwaveSecurity / log4jcheck
  A script that checks for vulnerable Log4j (CVE-2021-44228) systems using injection of the payload in common HTTP headers.
  ☆127Updated 3 years ago
• mamun-sec / dfirt
  Collect information of Windows PC when doing incident response
  ☆252Updated 2 years ago
• Diverto / nse-log4shell
  Nmap NSE scripts to check against log4shell or LogJam vulnerabilities (CVE-2021-44228)
  ☆352Updated 3 years ago
• fox-it / log4j-finder
  Find vulnerable Log4j2 versions on disk and also inside Java Archive Files (Log4Shell CVE-2021-44228, CVE-2021-45046, CVE-2021-45105)
  ☆437Updated 2 years ago
• fullhunt / spring4shell-scan
  A fully automated, reliable, and accurate scanner for finding Spring4Shell and Spring Cloud RCE vulnerabilities
  ☆660Updated 3 years ago
• alexandre-lavoie / python-log4rce
  An All-In-One Pure Python PoC for CVE-2021-44228
  ☆178Updated 3 years ago
• dinosn / CVE-2022-22963
  CVE-2022-22963 PoC
  ☆116Updated 3 years ago
• proferosec / log4jScanner
  log4jScanner provides the ability to scan internal subnets for vulnerable log4j web services
  ☆489Updated 2 years ago
• mwarnerblu / Log4ShellScanner
  Scans and catches callbacks of systems that are impacted by Log4J Log4Shell vulnerability across specific headers.
  ☆59Updated 3 years ago
• leonjza / log4jpwn
  log4j rce test environment and poc
  ☆311Updated 3 years ago
• pwnesia / dnstake
  DNSTake — A fast tool to check missing hosted DNS zones that can lead to subdomain takeover
  ☆849Updated 2 years ago
• TheParmak / conti-leaks-englished
  Google and deepl translated conti leaks, which is shared by a member of the conti ransomware group.
  ☆615Updated 3 years ago
• enkomio / AlanFramework
  A C2 post-exploitation framework
  ☆485Updated last year
• back2root / log4shell-rex
  PCRE RegEx matching Log4Shell CVE-2021-44228 IOC in your logs
  ☆293Updated 3 years ago
• ktecv2000 / ProxyShell
  ProxyShell POC Exploit : Exchange Server RCE (ACL Bypass + EoP + Arbitrary File Write)
  ☆328Updated 3 years ago
• 0xInfection / LogMePwn
  A fully automated, reliable, super-fast, scanning and validation toolkit for the Log4J RCE CVE-2021-44228 vulnerability.
  ☆398Updated 11 months ago
• horizon3ai / CVE-2022-1388
  POC for CVE-2022-1388
  ☆231Updated 3 years ago
• outflanknl / PrintNightmare
  ☆344Updated 4 years ago
• Qualys / log4jscanwin
  Log4j Vulnerability Scanner for Windows
  ☆159Updated 4 months ago
• LaresLLC / CVE-2021-1675
  CVE-2021-1675 Detection Info
  ☆215Updated 2 years ago
• darkquasar / AzureHunter
  A Cloud Forensics Powershell module to run threat hunting playbooks on data from Azure and O365
  ☆789Updated 3 years ago
• mhaskar / DNSStager
  Hide your payload in DNS
  ☆615Updated 2 years ago
• kagancapar / CVE-2022-29072
  7-Zip through 21.07 on Windows allows privilege escalation and command execution when a file with the .7z extension is dragged to the Hel…
  ☆686Updated 3 years ago
• Eilonh / s3crets_scanner
  ☆573Updated 2 years ago
• optiv / Talon
  A password guessing tool that targets the Kerberos and LDAP services within the Windows Active Directory environment.
  ☆447Updated 2 years ago