fullhunt / spring4shell-scan

Related projects ⓘ

Alternatives and complementary repositories for spring4shell-scan

• tangxiaofeng7 / BurpLog4j2Scan
  Burpsuite extension for log4j2rce
  ☆29Updated 2 years ago
• silentsignal / burp-log4shell
  Log4Shell scanner for Burp Suite
  ☆481Updated last year
• BobTheShoplifter / Spring4Shell-POC
  Spring4Shell Proof Of Concept/And vulnerable application CVE-2022-22965
  ☆360Updated 2 years ago
• reznok / Spring4Shell-POC
  Dockerized Spring4Shell (CVE-2022-22965) PoC application and exploit
  ☆312Updated 2 years ago
• Raghavd3v / CRLFsuite
  The most powerful CRLF injection (HTTP Response Splitting) scanner.
  ☆556Updated last year
• p0dalirius / ApacheTomcatScanner
  A python script to scan for Apache Tomcat server vulnerabilities.
  ☆793Updated last month
• projectdiscovery / nuclei-burp-plugin
  Nuclei plugin for BurpSuite
  ☆1,194Updated 2 months ago
• craig / SpringCore0day
  SpringCore0day from https://share.vx-underground.org/ & some additional links
  ☆393Updated 2 years ago
• Puliczek / CVE-2021-44228-PoC-log4j-bypass-words
  🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks
  ☆935Updated 2 years ago
• woodpecker-appstore / log4j-payload-generator
  Log4j jndi injects the Payload generator
  ☆489Updated 2 years ago
• cube0x0 / noPac
  CVE-2021-42287/CVE-2021-42278 Scanner & Exploiter.
  ☆1,342Updated 2 years ago
• whwlsfb / Log4j2Scan
  Log4j2 RCE Passive Scanner plugin for BurpSuite
  ☆773Updated last year
• safebuffer / sam-the-admin
  Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user
  ☆985Updated 2 years ago
• hakivvi / CVE-2022-29464
  WSO2 RCE (CVE-2022-29464) exploit and writeup.
  ☆370Updated 2 years ago
• Hackmanit / Web-Cache-Vulnerability-Scanner
  Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hac…
  ☆877Updated this week
• AgainstTheWest / NginxDay
  Nginx 18.1 04/09/22 zero-day repo
  ☆367Updated 2 years ago
• luisfontes19 / xxexploiter
  Tool to help exploit XXE vulnerabilities
  ☆543Updated last year
• volkandindar / agartha
  A Burp extension helps identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violations,…
  ☆354Updated last month
• p0dalirius / ipsourcebypass
  This Python script can be used to bypass IP source restrictions using HTTP headers.
  ☆380Updated 6 months ago
• qtc-de / remote-method-guesser
  Java RMI Vulnerability Scanner
  ☆830Updated 4 months ago
• wgpsec / CreateHiddenAccount
  A tool for creating hidden accounts using the registry || 一个使用注册表创建隐藏帐户的工具
  ☆431Updated 2 years ago
• jas502n / Log4j2-CVE-2021-44228
  Remote Code Injection In Log4j
  ☆460Updated 2 years ago
• cckuailong / pocsploit
  a lightweight, flexible and novel open source poc verification framework
  ☆233Updated 2 years ago
• mdsecresearch / BurpSuiteSharpener
  ☆516Updated last year
• devploit / nomore403
  Tool to bypass 403/40X response codes.
  ☆1,113Updated 3 months ago
• 0xInfection / LogMePwn
  A fully automated, reliable, super-fast, mass scanning and validation toolkit for the Log4J RCE CVE-2021-44228 vulnerability.
  ☆386Updated 7 months ago
• veracode-research / rogue-jndi
  A malicious LDAP server for JNDI injection attacks
  ☆1,012Updated last year