hktalent / spring-spel-0day-pocLinks
spring-cloud / spring-cloud-function,spring.cloud.function.routing-expression,RCE,0day,0-day,POC,EXP,CVE-2022-22963
☆357Updated 2 years ago
Alternatives and similar repositories for spring-spel-0day-poc
Users that are interested in spring-spel-0day-poc are comparing it to the libraries listed below
Sorting:
- ZKar is a Java serialization protocol analysis tool implement in Go.☆620Updated 4 months ago
- Remote Code Injection In Log4j☆468Updated 3 years ago
- 80+ Gadgets(30 More than ysoserial). JNDI-Injection-Exploit-Plus is a tool for generating workable JNDI links and provide background serv…☆808Updated last year
- Java RCE 回显测试代码☆1,012Updated 4 years ago
- RevSuit is a flexible and powerful reverse connection platform designed for receiving connection from target host in penetration.☆546Updated 2 years ago
- Fastjson扫描器,可识别版本、依赖库、autoType状态等。A tool to distinguish fastjson ,version and dependency☆1,029Updated 2 years ago
- Optimized DNS/HTTP Log Tool for pentesters, faster and easy to use.☆398Updated last year
- 一个简单的Fastjson反序列化检测burp插件☆928Updated 4 years ago
- SpringScan 漏洞检测 Burp插件☆600Updated last year
- Msmap is a Memory WebShell Generator.☆583Updated 2 years ago
- 对权限绕过自动化bypass的burpsuite插件☆918Updated last year
- BurpBounty 魔改版本☆417Updated 3 years ago
- CVE-2021-21972 Exploit☆494Updated 2 years ago
- 各种CMS、各种平台、各种系统、各种软件漏洞的EXP、POC 该项目将不断更新☆269Updated 3 years ago
- Shiro反序列化利用工具,支持新版本(AES-GCM)Shiro的key爆破,配合ysoserial,生成回显Payload☆893Updated 4 years ago
- A malicious LDAP server for JNDI injection attacks☆325Updated 3 years ago
- Vulnerabilities of Goby supported with exploitation.☆730Updated 2 months ago
- An exquisite dns&http log server for verify SSRF/XXE/RFI/RCE vulnerability☆471Updated last year
- Fiora:漏洞PoC框架Nuclei的图形版。快捷搜索PoC、一键运行Nuclei。即可作为独立程序运行,也可作为burp插件使用。☆1,230Updated last year
- Gosint is a distributed asset information collection and vulnerability scanning platform☆425Updated 2 years ago
- 域控安全one for all☆734Updated 9 months ago
- 一款用于JNDI注入利用的工具,大量参考/引用了Rogue JNDI项目的代码,支持直接植入内存shell,并集成了常见的bypass 高版本JDK的方式,适用于与自动化工具配合使用。☆336Updated 2 years ago
- 冰蝎Java WebShell自动化免杀生成☆778Updated 3 years ago
- spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧☆727Updated 4 years ago
- A Burp Extender for checking for struts 2 RCE vulnerabilities.☆285Updated last year
- 高危漏洞精准检测与深度利用框架☆1,418Updated 2 years ago
- 解决FastJson、Jackson、Log4j2、原生JNDI注入漏洞的高版本JDKBypass利用,探测本地可用反序列化gadget达到命令执行、回显命令执行、内存马注入☆730Updated 3 years ago
- A helpful Java Deserialization exploit framework.☆1,219Updated 4 months ago
- 事件驱动的渗透测试扫描器 Event-driven pentest scanner☆685Updated 11 months ago
- CVE-2022-22947☆220Updated 3 years ago