fullhunt / spring4shell-scanLinks
A fully automated, reliable, and accurate scanner for finding Spring4Shell and Spring Cloud RCE vulnerabilities
☆657Updated 3 years ago
Alternatives and similar repositories for spring4shell-scan
Users that are interested in spring4shell-scan are comparing it to the libraries listed below
Sorting:
- Log4Shell scanner for Burp Suite☆485Updated last year
- Burpsuite extension for log4j2rce☆28Updated 3 years ago
- Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user☆1,019Updated 2 years ago
- Spring4Shell Proof Of Concept/And vulnerable application CVE-2022-22965☆368Updated 2 years ago
- Dockerized Spring4Shell (CVE-2022-22965) PoC application and exploit☆312Updated 2 years ago
- Log4j jndi injects the Payload generator☆487Updated 3 years ago
- CVE-2021-42287/CVE-2021-42278 Scanner & Exploiter.☆1,374Updated 3 years ago
- Nuclei plugin for BurpSuite☆1,257Updated 8 months ago
- Log4j2 RCE Passive Scanner plugin for BurpSuite☆807Updated last year
- The most powerful CRLF injection (HTTP Response Splitting) scanner.☆583Updated last year
- Nginx 18.1 04/09/22 zero-day repo☆373Updated 3 years ago
- A python script to scan for Apache Tomcat server vulnerabilities.☆837Updated 3 months ago
- Remote Code Injection In Log4j☆467Updated 3 years ago
- HopLa Burp Suite Extender plugin - Adds autocompletion support and useful payloads in Burp Suite☆749Updated 4 years ago
- 🐱💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks☆945Updated 3 years ago
- SSRF plugin for burp Automates SSRF Detection in all of the Request☆586Updated 4 years ago
- ☆520Updated 2 years ago
- Pre-Built Vulnerable Multiple API Scenarios Environments Based on Docker-Compose.☆403Updated 2 years ago
- Java RMI Vulnerability Scanner☆869Updated 11 months ago
- WSO2 RCE (CVE-2022-29464) exploit and writeup.☆373Updated 3 years ago
- RCE 0-day for GhostScript 9.50 - Payload generator☆547Updated 3 years ago
- a lightweight, flexible and novel open source poc verification framework☆235Updated 3 years ago
- RedGuard is a C2 front flow control tool,Can avoid Blue Teams,AVs,EDRs check.☆1,478Updated 9 months ago
- A Burp extension helps identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violations,…☆371Updated 2 months ago
- SpringCore0day from https://share.vx-underground.org/ & some additional links☆394Updated 3 years ago
- Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…☆250Updated 6 months ago
- This Python script can be used to bypass IP source restrictions using HTTP headers.☆388Updated 4 months ago
- Proof-of-Concept exploits for CVEs found by the team at Rhino Security Labs☆855Updated 2 months ago
- Authenticated Remote Command Execution in Gitlab via GitHub import☆222Updated 2 years ago
- A malicious LDAP server for JNDI injection attacks☆1,040Updated last year