fullhunt / spring4shell-scanLinks
A fully automated, reliable, and accurate scanner for finding Spring4Shell and Spring Cloud RCE vulnerabilities
☆661Updated 3 years ago
Alternatives and similar repositories for spring4shell-scan
Users that are interested in spring4shell-scan are comparing it to the libraries listed below
Sorting:
- Burpsuite extension for log4j2rce☆28Updated 3 years ago
- Log4Shell scanner for Burp Suite☆486Updated last year
- Spring4Shell Proof Of Concept/And vulnerable application CVE-2022-22965☆368Updated 2 years ago
- Dockerized Spring4Shell (CVE-2022-22965) PoC application and exploit☆318Updated 3 years ago
- Log4j jndi injects the Payload generator☆490Updated 3 years ago
- Nuclei plugin for BurpSuite☆1,287Updated 11 months ago
- 🐱💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks☆950Updated 3 years ago
- HopLa Burp Suite Extender plugin - Brings AI capabilities, autocompletion support, and a set of useful payloads to Burp Suite☆772Updated 2 weeks ago
- A python script to scan for Apache Tomcat server vulnerabilities.☆848Updated 2 weeks ago
- Nginx 18.1 04/09/22 zero-day repo☆374Updated 3 years ago
- The most powerful CRLF injection (HTTP Response Splitting) scanner.☆586Updated last year
- WSO2 RCE (CVE-2022-29464) exploit and writeup.☆373Updated 3 years ago
- A Burp Suite extension for identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violati…☆374Updated this week
- a lightweight, flexible and novel open source poc verification framework☆237Updated 3 years ago
- Pre-Built Vulnerable Multiple API Scenarios Environments Based on Docker-Compose.☆411Updated 3 years ago
- EPSS & VEDAS Score Aggregator for CVEs☆250Updated this week
- Log4j2 RCE Passive Scanner plugin for BurpSuite☆820Updated 2 years ago
- This Python script can be used to bypass IP source restrictions using HTTP headers.☆395Updated 6 months ago
- Java RMI Vulnerability Scanner☆889Updated last year
- ☆522Updated 2 years ago
- A fully automated, reliable, super-fast, mass scanning and validation toolkit for the Log4J RCE CVE-2021-44228 vulnerability.☆400Updated 8 months ago
- SSRF plugin for burp Automates SSRF Detection in all of the Request☆593Updated 4 years ago
- SpringCore0day from https://share.vx-underground.org/ & some additional links☆394Updated 3 years ago
- A malicious LDAP server for JNDI injection attacks☆1,054Updated last year
- Remote Code Injection In Log4j☆470Updated 3 years ago
- Confluence Server Webwork OGNL injection☆310Updated 6 months ago
- Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user☆1,031Updated 3 years ago
- RCE 0-day for GhostScript 9.50 - Payload generator☆547Updated 3 years ago
- Afuzz is an automated web path fuzzing tool for the Bug Bounty projects.☆304Updated 2 years ago
- Totally Insecure Web Application Project (TIWAP)☆174Updated last year