hktalent / spring-spel-0day-poc
spring-cloud / spring-cloud-function,spring.cloud.function.routing-expression,RCE,0day,0-day,POC,EXP,CVE-2022-22963
☆354Updated last year
Related projects ⓘ
Alternatives and complementary repositories for spring-spel-0day-poc
- BurpBounty 魔改版本☆411Updated 2 years ago
- Remote Code Injection In Log4j☆459Updated 2 years ago
- ZKar is a Java serialization protocol analysis tool implement in Go.☆598Updated 3 months ago
- SpringCore0day from https://share.vx-underground.org/ & some additional links☆392Updated 2 years ago
- RevSuit is a flexible and powerful reverse connection platform designed for receiving connection from target host in penetration.☆517Updated last year
- An exquisite dns&http log server for verify SSRF/XXE/RFI/RCE vulnerability☆470Updated last year
- CVE-2021-21972 Exploit☆484Updated last year
- 80+ Gadgets(30 More than ysoserial). JNDI-Injection-Exploit-Plus is a tool for generating workable JNDI links and provide background serv…☆713Updated 4 months ago
- Java RCE 回显测试代码☆995Updated 4 years ago
- Fastjson扫描器,可识别版本、依赖库、autoType状态等。A tool to distinguish fastjson ,version and dependency☆992Updated 2 years ago
- Shiro反序列化利用工具,支持新版本(AES-GCM)Shiro的key爆破,配合ysoserial,生成回显Payload☆888Updated 3 years ago
- A rouge mysql server supports reading files from most mysql libraries of multiple programming languages.☆699Updated last year
- Vulnerabilities of Goby supported with exploitation.☆706Updated last week
- CVE-2022-22947☆220Updated 2 years ago
- 一个简单的Fastjson反序列化检测burp插件☆863Updated 3 years ago
- spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧☆683Updated 3 years ago
- Optimized DNS/HTTP Log Tool for pentesters, faster and easy to use.☆388Updated 4 months ago
- 对权限绕过自动化bypass的burpsuite插件☆830Updated 4 months ago
- SpringScan 漏洞检测 Burp插件☆582Updated last year
- 各种CMS、各种平台、各种系统、各种软件漏洞的EXP、POC 该项目将不断更新☆263Updated 2 years ago
- 域控安全one for all☆704Updated 2 months ago
- A malicious LDAP server for JNDI injection attacks☆298Updated 2 years ago
- 冰蝎Java WebShell自动化免杀生成☆767Updated 2 years ago
- OpenSource Poc && Vulnerable-Target Storage Box.☆677Updated last year
- 一键调用subfinder+ksubdomain+httpx 强强联合 从域名发现-->域名验证-->获取域名标题、状态码以及响应大小 最后保存结果,简化重复操作命令☆331Updated 2 years ago