alt3kx / CVE-2022-22965_PoCView external linksLinks
Spring Framework RCE (Quick pentest notes)
☆17Apr 7, 2022Updated 3 years ago
Alternatives and similar repositories for CVE-2022-22965_PoC
Users that are interested in CVE-2022-22965_PoC are comparing it to the libraries listed below
Sorting:
- aggregated repo for all conferences and talks I am giving☆17Oct 30, 2021Updated 4 years ago
- github信息泄露搜集工具。GSIL升级版,去除发邮件方式,将结果保存在本地☆13Mar 20, 2021Updated 4 years ago
- F5 BIG-IP RCE exploitation (CVE-2022-1388)☆87May 16, 2022Updated 3 years ago
- PoC for CVE-2021-3492 used at Pwn2Own 2021☆42Aug 3, 2021Updated 4 years ago
- 批量无损检测CVE-2022-22965☆41Apr 1, 2022Updated 3 years ago
- Silent Cleanup UAC Bypass POC☆11Dec 15, 2019Updated 6 years ago
- ☆12Jan 8, 2026Updated last month
- 读取dump向日葵&Todesk进程的文件获得连接信息☆17Sep 27, 2024Updated last year
- This script was developped to assist in SpearPhishing campaign during Red Team operations. It can be used to generate random name based o…☆13Feb 6, 2023Updated 3 years ago
- A script that greps composite key-like strings from a KeePassXC process dump, then uses a customized version of pykeepass library to unlo…☆32Nov 12, 2022Updated 3 years ago
- Finds Domain Controller on a network, enumerates users, AS-REP Roasting and hash cracking, bruteforces password, dumps AD users, DRSUAPI,…☆18Sep 23, 2023Updated 2 years ago
- VisualStudio port of https://github.com/guervild/BOFs/tree/dev/SilentLsassDump☆24Jul 6, 2023Updated 2 years ago
- phpMyAdmin爆破☆14Sep 17, 2020Updated 5 years ago
- ☆19Oct 2, 2022Updated 3 years ago
- Spring Framework RCE (CVE-2022-22965) Nmap (NSE) Checker (Non-Intrusive)☆101Apr 7, 2022Updated 3 years ago
- Spawns a process from a process. Can sometimes be used to run a session > 0 process from session 0.☆20Jul 8, 2022Updated 3 years ago
- Spin up a reverse proxy quickly on Heroku☆15Dec 5, 2020Updated 5 years ago
- Zabbix - SAML SSO Authentication Bypass☆15Mar 31, 2022Updated 3 years ago
- A collection of my presentation materials.☆17Apr 29, 2024Updated last year
- CVE-2022-22965 poc including reverse-shell support☆13Nov 29, 2023Updated 2 years ago
- This includes CVE-2022-22963, a Spring SpEL / Expression Resource Access Vulnerability, as well as CVE-2022-22965, the spring-webmvc/spri…☆14Mar 31, 2022Updated 3 years ago
- SubzzZ to find possible subdomains using passive recon. Tool also support Permutations, Mutations, Alterations.☆38Mar 7, 2021Updated 4 years ago
- Utility to analyse, ingest and push out credentials from common data sources during an internal penetration test.☆19Jun 12, 2022Updated 3 years ago
- .NET profiler DLL loading can be abused to make a legit .NET application load a malicious DLL using environment variables. This exploit i…☆46Jul 29, 2024Updated last year
- ☆215Jan 19, 2023Updated 3 years ago
- Federated Office365 user enumeration based on correlated response trend analysis☆50May 3, 2022Updated 3 years ago
- user/name/pass/web/file☆16Oct 6, 2025Updated 4 months ago
- URL-IP 批量处理URL和IP 资产处理 高效渗透必备☆20Apr 6, 2023Updated 2 years ago
- Poc script for ProxyShell exploit chain in Exchange Server☆23Feb 24, 2022Updated 3 years ago
- CVE-2022-1388 F5 BIG-IP iControl REST Auth Bypass RCE☆83Jun 28, 2022Updated 3 years ago
- "D3MPSEC" is a memory dumping tool designed to extract memory dump from Lsass process using various techniques, including direct system c…☆28Sep 18, 2024Updated last year
- Spring Cloud Function Vulnerable Application / CVE-2022-22963☆19Apr 1, 2022Updated 3 years ago
- ☆21Nov 13, 2019Updated 6 years ago
- A Safer PoC for CVE-2022-22965 (Spring4Shell)☆44May 27, 2022Updated 3 years ago
- Quick WAF "paranoid" Doctor Evaluation | WAFPARAN01D3 Tool☆24Nov 22, 2021Updated 4 years ago
- CVE-2022-41040 - Server Side Request Forgery (SSRF) in Microsoft Exchange Server☆91Jan 21, 2023Updated 3 years ago
- 这是一个从黑暗搜索引擎 搜索查找存在此反序列化漏洞 的批量检测脚本☆11Feb 23, 2023Updated 2 years ago
- 用友NC Cloud前台远程命令执行漏洞批量扫描poc、exp,带命令执行回显☆19Jul 21, 2023Updated 2 years ago
- Bringing Shikata ga nai to the front html☆23Apr 28, 2022Updated 3 years ago