hktalent/spring-spel-0day-poc

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/hktalent/spring-spel-0day-poc)

hktalent / spring-spel-0day-poc

spring-cloud / spring-cloud-function,spring.cloud.function.routing-expression,RCE,0day,0-day,POC,EXP,CVE-2022-22963

☆356

Alternatives and similar repositories for spring-spel-0day-poc

Users that are interested in spring-spel-0day-poc are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

GhostTroops / go-utils
View on GitHub
go-utils
☆12Nov 22, 2025Updated 4 months ago
cckuailong / spring-cloud-function-SpEL-RCE
View on GitHub
spring-cloud-function SpEL RCE, Vultarget & Poc
☆135Mar 27, 2022Updated 4 years ago
craig / SpringCore0day
View on GitHub
SpringCore0day from https://share.vx-underground.org/ & some additional links
☆398Mar 31, 2022Updated 4 years ago
hktalent / AiCSA_pub
View on GitHub
AiCSA，Move to https://github.com/hktalent/AiCSA
☆10Apr 3, 2023Updated 3 years ago
lucksec / Spring-Cloud-Gateway-CVE-2022-22947
View on GitHub
CVE-2022-22947
☆223Mar 3, 2022Updated 4 years ago
Managed hosting for WordPress and PHP on Cloudways • Ad
Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
wyzxxz / jndi_tool
View on GitHub
JNDI服务利用工具 RMI/LDAP，支持部分场景回显、内存shell，高版本JDK场景下利用等，fastjson rce命令执行，log4j rce命令执行漏洞检测辅助工具
☆2,017May 21, 2024Updated last year
Bonfee / CVE-2022-0995
View on GitHub
CVE-2022-0995 exploit
☆500Mar 27, 2022Updated 4 years ago
colincowie / Safer_PoC_CVE-2022-22965
View on GitHub
A Safer PoC for CVE-2022-22965 (Spring4Shell)
☆44May 27, 2022Updated 3 years ago
liangyueliangyue / spring-core-rce
View on GitHub
springFramework_CVE-2022-22965_RCE简单利用
☆26Apr 7, 2022Updated 4 years ago
whwlsfb / Log4j2Scan
View on GitHub
Log4j2 RCE Passive Scanner plugin for BurpSuite
☆831Aug 4, 2023Updated 2 years ago
Ryze-T / CNVD-2022-10270-LPE
View on GitHub
基于向日葵RCE的本地权限提升，无需指定端口
☆211Feb 24, 2022Updated 4 years ago
czz1233 / GBByPass
View on GitHub
冰蝎哥斯拉 WebShell bypass
☆767Jan 15, 2026Updated 3 months ago
SummerSec / AgentInjectTool
View on GitHub
改造BeichenDream/InjectJDBC加入shiro获取key和修改key功能
☆280Nov 28, 2023Updated 2 years ago
Yihsiwei / GetOut360
View on GitHub
强制关闭360 需要管理员权限
☆171Feb 6, 2022Updated 4 years ago
Managed hosting for WordPress and PHP on Cloudways • Ad
Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
SummerSec / SpringExploit
View on GitHub
🚀 一款为了学习go而诞生的漏洞利用工具
☆451Jun 14, 2022Updated 3 years ago
NyDubh3 / AnonymousSMBServer
View on GitHub
一个能快速开启和关闭匿名SMB共享的红队脚本
☆175Apr 6, 2022Updated 4 years ago
hktalent / golang-RCE-0day-POC
View on GitHub
golang RCE 0day POC
☆71Apr 1, 2022Updated 4 years ago
sherlocksecurity / VMware-CVE-2022-22954
View on GitHub
POC for VMWARE CVE-2022-22954
☆282Apr 13, 2022Updated 4 years ago
f0ng / log4j2burpscanner
View on GitHub
CVE-2021-44228 Log4j2 BurpSuite Scanner,Customize ceye.io api or other apis,including internal networks
☆841Jun 13, 2023Updated 2 years ago
hktalent / CVE-2021-40865
View on GitHub
CVE-2021-40865
☆14Nov 26, 2021Updated 4 years ago
Schira4396 / VcenterKiller
View on GitHub
一款针对Vcenter的综合利用工具，包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j，提供一键上传webs…
☆1,473Apr 25, 2024Updated last year
keven1z / weblogic_memshell
View on GitHub
适用于weblogic和Tomcat的无文件的内存马(memshell)
☆271Mar 4, 2022Updated 4 years ago
novysodope / RMI_Inj_MemShell
View on GitHub
rmi打内存马工具，适用于目标用不了ldap的情况
☆254Jul 12, 2023Updated 2 years ago
AI Agents on DigitalOcean Gradient AI Platform • Ad
Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
ZZ-SOCMAP / CVE-2021-35587
View on GitHub
Oracle Access Manager Unauthenticated Attacker Vulnerability CVE-2021-35587
☆42Mar 14, 2022Updated 4 years ago
JDArmy / DCSec
View on GitHub
域控安全one for all
☆738Sep 9, 2024Updated last year
UzJu / Cloud-Bucket-Leak-Detection-Tools
View on GitHub
六大云存储，泄露利用检测工具
☆1,252Mar 28, 2025Updated last year
i11us0ry / goon
View on GitHub
goon,集合了fscan和kscan等优秀工具功能的扫描爆破工具。功能包含：ip探活、port扫描、web指纹扫描、title扫描、压缩文件扫描、fofa获取、ms17010、mssql、mysql、postgres、redis、ssh、smb、rdp、telnet、to…
☆812Aug 5, 2024Updated last year
achuna33 / MYExploit
View on GitHub
OAExploit一款基于产品的一键扫描工具。
☆1,483Sep 20, 2022Updated 3 years ago
8ypass / weblogicExploit
View on GitHub
weblogic历史漏洞利用工具
☆91Jul 25, 2022Updated 3 years ago
Puliczek / CVE-2021-44228-PoC-log4j-bypass-words
View on GitHub
🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks
☆951Jan 15, 2022Updated 4 years ago
Ares-X / shiro-exploit
View on GitHub
Shiro反序列化利用工具，支持新版本(AES-GCM)Shiro的key爆破，配合ysoserial，生成回显Payload
☆896May 28, 2021Updated 4 years ago
Ptkatz / OrcaC2
View on GitHub
OrcaC2是一款基于Websocket加密通信的多功能C&C框架，使用Golang实现。
☆677Dec 30, 2022Updated 3 years ago
GPUs on demand by Runpod - Special Offer Available • Ad
Run AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
TryGOTry / DogCs4.4
View on GitHub
cs4.4修改去特征狗狗版(美化ui,去除特征,自带bypass核晶截图等..)
☆574Jan 17, 2023Updated 3 years ago
metaStor / SpringScan
View on GitHub
SpringScan 漏洞检测 Burp插件
☆607Nov 14, 2023Updated 2 years ago
crazy0x70 / dingtalk-RCE
View on GitHub
☆308Feb 16, 2022Updated 4 years ago
safe6Sec / PentestDB
View on GitHub
各种数据库的利用姿势
☆1,034Jan 3, 2025Updated last year
Rvn0xsy / PassDecode-jar
View on GitHub
帆软/致远密码解密工具
☆361Jul 29, 2021Updated 4 years ago
Ryze-T / cdb-wds
View on GitHub
利用白名单文件 cdb.exe 执行 shellcode
☆215Jun 29, 2022Updated 3 years ago
GhostTroops / go4hacker-mails
View on GitHub
Bulk email collection and retrieval, for hacker tools, mails dump
☆16Apr 28, 2023Updated 2 years ago