fullhunt / spring4shell-scan
A fully automated, reliable, and accurate scanner for finding Spring4Shell and Spring Cloud RCE vulnerabilities
☆657Updated 3 years ago
Alternatives and similar repositories for spring4shell-scan:
Users that are interested in spring4shell-scan are comparing it to the libraries listed below
- Burpsuite extension for log4j2rce☆28Updated 3 years ago
- Log4Shell scanner for Burp Suite☆484Updated last year
- Log4j jndi injects the Payload generator☆486Updated 3 years ago
- Nuclei plugin for BurpSuite☆1,234Updated 7 months ago
- The most powerful CRLF injection (HTTP Response Splitting) scanner.☆578Updated last year
- WSO2 RCE (CVE-2022-29464) exploit and writeup.☆372Updated 2 years ago
- Spring4Shell Proof Of Concept/And vulnerable application CVE-2022-22965☆366Updated 2 years ago
- HopLa Burp Suite Extender plugin - Adds autocompletion support and useful payloads in Burp Suite☆742Updated 3 years ago
- A python script to scan for Apache Tomcat server vulnerabilities.☆829Updated 2 months ago
- RCE 0-day for GhostScript 9.50 - Payload generator☆546Updated 3 years ago
- Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user☆1,012Updated 2 years ago
- Nginx 18.1 04/09/22 zero-day repo☆372Updated 3 years ago
- Web Cache Vulnerability Scanner is a Go-based CLI tool for testing for web cache poisoning. It is developed by Hackmanit GmbH (http://hac…☆958Updated this week
- HTTP Protocol Stack Remote Code Execution Vulnerability CVE-2022-21907☆362Updated 3 years ago
- a lightweight, flexible and novel open source poc verification framework☆235Updated 2 years ago
- CVE-2021-42287/CVE-2021-42278 Scanner & Exploiter.☆1,365Updated 3 years ago
- SSRF plugin for burp Automates SSRF Detection in all of the Request☆575Updated 4 years ago
- ☆520Updated last year
- Tool to help exploit XXE vulnerabilities☆559Updated 2 years ago
- Dockerized Spring4Shell (CVE-2022-22965) PoC application and exploit☆311Updated 2 years ago
- A malicious LDAP server for JNDI injection attacks☆1,029Updated last year
- A proof of concept exploit for CVE-2022-40684 affecting Fortinet FortiOS, FortiProxy, and FortiSwitchManager☆349Updated 2 years ago
- Log4j2 RCE Passive Scanner plugin for BurpSuite☆801Updated last year
- A fast tool to scan CRLF vulnerability written in Go☆1,412Updated 3 weeks ago
- EPSS & VEDAS Score Aggregator for CVEs☆235Updated this week
- This Python script can be used to bypass IP source restrictions using HTTP headers.☆384Updated 2 months ago
- Because just a dark theme wasn't enough!☆561Updated 4 months ago
- A Burp extension helps identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violations,…☆370Updated 2 weeks ago
- Nuclei Templates Collection☆973Updated 2 weeks ago
- Remote Code Injection In Log4j☆464Updated 3 years ago