Spring4Shell reproduce
☆11Apr 1, 2022Updated 3 years ago
Alternatives and similar repositories for Spring4Shell-POC
Users that are interested in Spring4Shell-POC are comparing it to the libraries listed below
Sorting:
- ☆13Feb 1, 2024Updated 2 years ago
- ☆14Nov 21, 2022Updated 3 years ago
- echoes(回响)是一款Github,红队监测工具☆14Mar 31, 2022Updated 3 years ago
- ☆12May 31, 2022Updated 3 years ago
- CVE-2022-24112:Apache APISIX apisix/batch-requests RCE☆44Feb 22, 2022Updated 4 years ago
- A simple Go module to retrieve host information through NTLMSSP challenges over HTTP(S) NTLM Authentication/RDP NLA/SMTP NTLM Authenticat…☆19Feb 20, 2026Updated last week
- 0DayList☆15Apr 4, 2022Updated 3 years ago
- Guided Differential Fuzzing for HTTP Request Parsing Discrepancies☆21Apr 11, 2024Updated last year
- A GitHub Action for running ZAP Automation Framework plans☆23Sep 30, 2025Updated 5 months ago
- A Burp Suite extension which augments your proxy traffic by injecting log4shell payloads into headers☆42Dec 13, 2021Updated 4 years ago
- A collection of awesome one-liner scripts especially for bug bounty tips.☆15Sep 8, 2020Updated 5 years ago
- SWF Vulnerability & Information Scanner☆18Nov 24, 2018Updated 7 years ago
- Script to upload files to non-repo storage from the command line☆75Feb 18, 2015Updated 11 years ago
- 👻inject_und3ad -- 蚁剑(AntSword)插件☆24Aug 8, 2019Updated 6 years ago
- Active DIrectory Lab for Pentesting Practice☆24Aug 9, 2022Updated 3 years ago
- 🌏 [WIP]整理好了之后迁移到 cdk-team/document,包含各类容器、K8s攻防场景的CDK文档。☆25Apr 16, 2022Updated 3 years ago
- This Repository gives the best and possible strategies against hunting the ransomware☆26Aug 23, 2022Updated 3 years ago
- ☆22Sep 10, 2021Updated 4 years ago
- Powershell 免杀脚本☆51Apr 13, 2023Updated 2 years ago
- PoC for the CVE-2023-49103☆30Dec 2, 2023Updated 2 years ago
- ✔A script that turns off Windows Defender☆23May 21, 2022Updated 3 years ago
- PHP lab to test captcha bypassing☆30Jan 8, 2024Updated 2 years ago
- ☆11Feb 28, 2022Updated 4 years ago
- 一款用于JNDI注入利用的工具,大量参考/引用了Rogue JNDI项目的代码,支持直接植入内存shell,并集成了常见的bypass 高版本JDK的方式,适用于与自动化工具配合使用。☆30Oct 25, 2021Updated 4 years ago
- vulhub靶场个人writeup,转载引用请注明地址,坑点补充联系作者。- -☆31Mar 11, 2021Updated 4 years ago
- This script just implement a proxy over h2cSmuggler so you can navigate in your browser making requests to the back-end server.☆36May 14, 2022Updated 3 years ago
- Ruby Gem to parse sitemaps.org compliant sitemaps☆33May 20, 2025Updated 9 months ago
- ☆10Oct 26, 2020Updated 5 years ago
- ☆10Aug 18, 2021Updated 4 years ago
- This repository contains scripts about ACL abuse and any other active directory attacking methods.☆36Aug 20, 2023Updated 2 years ago
- ☆37Aug 25, 2020Updated 5 years ago
- ☆113Updated this week
- Spring Cloud Function Spel命令执行漏洞☆39Mar 27, 2022Updated 3 years ago
- Pockr Asset Management 破壳资产管理工具☆11Dec 8, 2022Updated 3 years ago
- A wireless playground using mac80211 hwsim devices and docker containers.☆10May 19, 2023Updated 2 years ago
- HOCig- Automatic HOC Information Gathering Tool V 1.2☆10May 4, 2021Updated 4 years ago
- Extensor is a command-line tool designed to help users quickly gather URLs containing specific file extensions from a given source (e.g.,…☆10Mar 13, 2024Updated last year
- ☆13Mar 28, 2024Updated last year
- 用于演示Java Web项目中,漏洞的成因及修复方案,可用于黑盒测试和白盒测试,部分修复方案可用于生产环境。☆43Apr 20, 2018Updated 7 years ago