Alternatives and similar repositories for spring-cloud-function-SpEL-RCE:

Users that are interested in spring-cloud-function-SpEL-RCE are comparing it to the libraries listed below

• lucksec / Spring-Cloud-Gateway-CVE-2022-22947
  CVE-2022-22947
  ☆219Updated 3 years ago
• chaitin / log4j2-vaccine
  log4j2-vaccine
  ☆85Updated 3 years ago
• boundaryx / cloudrasp-log4j2
  一个针对防御 log4j2 CVE-2021-44228 漏洞的 RASP 工具。 A Runtime Application Self-Protection module specifically designed for log4j2 RCE (CVE-2021-442…
  ☆123Updated 3 years ago
• Y4er / yaml-payload
  Spring Cloud SnakeYAML 反序列化一键注入cmdshell和reGeorg
  ☆132Updated 4 years ago
• Y4er / fastjson-bypass-autotype-1.2.68
  fastjson bypass autotype 1.2.68 with Throwable and AutoCloseable.
  ☆223Updated 2 years ago
• BeichenDream / Kcon2021Code
  ☆269Updated 3 years ago
• bigsizeme / shiro-check
  Shiro反序列化回显利用、内存shell、检查 Burp插件
  ☆216Updated 2 years ago
• 5wimming / gadgetinspector
  利用链、漏洞检测工具
  ☆367Updated 7 months ago
• Veraxy00 / Shiro-EXP
  Apache Shiro 反序列化漏洞检测与利用工具，一键注入内存马
  ☆138Updated 4 years ago
• iSafeBlue / redis-rce
  Redis RCE 的几种方法
  ☆90Updated 8 months ago
• Ppsoft1991 / CodeReviewTools
  通过正则搜索、批量反编译特定Jar包中的class名称
  ☆310Updated 3 years ago
• haby0 / sec-note
  记录各语言、框架中危险的sink，个人代码审计、漏洞研究使用。
  ☆116Updated 3 years ago
• ydnzol / memshell
  Tomcat 冰蝎内存马。
  ☆211Updated 4 years ago
• LFYSec / ActuatorExploit
  SpringBoot Actuator未授权自动化利用，支持信息泄漏/RCE
  ☆232Updated 4 years ago
• threedr3am / ysoserial
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.优化了一些东西。
  ☆215Updated 3 years ago
• vulhub / Apereo-CAS-Attack
  WIP: Demo for Attacking Apereo CAS
  ☆89Updated 4 years ago
• keven1z / weblogic_memshell
  适用于weblogic和Tomcat的无文件的内存马(memshell)
  ☆266Updated 3 years ago
• r00tSe7en / JNDIMonitor
  一个LDAP请求监听器，摆脱dnslog平台
  ☆285Updated last year
• rufherg / WebLogic_Basic_Poc
  用于WebLogic poc及exp测试的基础脚本，后续将集成各版本poc库
  ☆92Updated 4 years ago
• yzddmr6 / JspForAntSword
  中国蚁剑JSP一句话Payload
  ☆121Updated 4 years ago
• BeichenDream / InjectJDBC
  注入JVM进程 动态获取目标进程连接的数据库
  ☆313Updated 2 years ago
• longofo / PaddingOracleAttack-Shiro-721
  Shiro-721 Padding Oracle Attack
  ☆70Updated 3 years ago
• lalajun / RMIDeserialize
  RMI 反序列化环境 一步步
  ☆211Updated 4 years ago
• flowerwind / JspFinder
  一款通过污点追踪发现Jsp webshell的工具(A tool to find Jsp Webshell through stain tracking)
  ☆175Updated 3 years ago
• Rvn0xsy / DumperAnalyze
  通过JavaAgent与Javassist技术对JVM加载的类对象进行动态插桩，可以做一些破解、加密验证的绕过等操作
  ☆98Updated 8 months ago
• MagicZer0 / fastjson-rce-exploit
  exploit for fastjson remote code execution vulnerability
  ☆152Updated 2 years ago
• lijiejie / MisConfig_HTTP_Proxy_Scanner
  The scanner helps to scan misconfigured reverse proxy servers and misconfigured forward proxy servers
  ☆172Updated last year
• p1g3 / Fastjson-Scanner
  a burp extension to find where use fastjson
  ☆165Updated 4 years ago
• waderwu / attackRmi
  attackRmi
  ☆252Updated 4 years ago
• kezibei / Urldns
  ☆312Updated 6 months ago