try to determine if a host is vulnerable to SpringShell CVE‐2022‐22965 and CVE‐2022‐22963
☆23Mar 3, 2026Updated this week
Alternatives and similar repositories for check-springshell
Users that are interested in check-springshell are comparing it to the libraries listed below
Sorting:
- This includes CVE-2022-22963, a Spring SpEL / Expression Resource Access Vulnerability, as well as CVE-2022-22965, the spring-webmvc/spri…☆14Mar 31, 2022Updated 3 years ago
- Zabbix - SAML SSO Authentication Bypass☆15Mar 31, 2022Updated 3 years ago
- CVE-2022-22965 - CVE-2010-1622 redux☆19Apr 18, 2023Updated 2 years ago
- multiduplicut : optimize wordlists-based password cracking methods chaining☆16Feb 25, 2022Updated 4 years ago
- Rust-based password mutator for brute force attacks☆13Mar 21, 2025Updated 11 months ago
- 基于python开发的主动漏洞扫描工具☆10Jul 11, 2022Updated 3 years ago
- F5 Service Password Decryption☆29Jul 31, 2025Updated 7 months ago
- ☆31Apr 5, 2022Updated 3 years ago
- Generate representative samples from Pwned Passwords (HIBP)☆11Jan 6, 2022Updated 4 years ago
- 提供批量扫描URL以及执行命令功能。Workspace ONE Access 模板注入漏洞,可执行任意代码☆12Apr 15, 2022Updated 3 years ago
- Python Bindings for Hashtopolis Client API☆18Dec 6, 2023Updated 2 years ago
- Python version of the OMEN password cracker☆17Dec 17, 2024Updated last year
- Spring Boot web application vulnerable to Log4Shell (CVE-2021-44228) and the possible Spring RCE vulnerability.☆34Mar 31, 2022Updated 3 years ago
- ☆18Mar 14, 2023Updated 2 years ago
- Spring4Shell - Spring Core RCE - CVE-2022-22965☆130Apr 4, 2022Updated 3 years ago
- PCC's aim is to provide a high performing offline tool to easily assess which users are vulnerable to Password Reuse Attacks (a.k.a. Pass…☆18Nov 25, 2019Updated 6 years ago
- Checks whether a Windows server according to security best practices as defined in the CIS Distribution-Independent Windows Benchmark☆23Sep 15, 2025Updated 5 months ago
- How to set up a local copy of Have-I-Been-Pwned's password checking service☆21Aug 19, 2021Updated 4 years ago
- Spring Framework RCE (Quick pentest notes)☆17Apr 7, 2022Updated 3 years ago
- Top hashpwn rules☆20Dec 12, 2025Updated 2 months ago
- ☆21Mar 25, 2022Updated 3 years ago
- A Safer PoC for CVE-2022-22965 (Spring4Shell)☆44May 27, 2022Updated 3 years ago
- Dump of all my hash-cracking related stuffs.☆23May 16, 2019Updated 6 years ago
- Spider - web crawler and local wordlist processor to generate frequency sorted wordlist / ngrams☆28Dec 16, 2025Updated 2 months ago
- 开发和安全和运营:DevSecOps-Software development (Dev) and Security (Sec) and IT operations (Ops).☆28Apr 13, 2024Updated last year
- Unescape strings with escape sequences written out as literal characters.☆26Jan 19, 2026Updated last month
- spring-core单个图形化利用工具,CVE-2022-22965及修复方案已出☆17Apr 2, 2022Updated 3 years ago
- Daily archiver & triage issue creator for new releases of CISA's Known Exploited Vulnerabilities list☆39Updated this week
- Most common AWS S3 bucket names.☆29Jun 2, 2020Updated 5 years ago
- ☆37Sep 29, 2020Updated 5 years ago
- Implementation of the ciphers in iClass☆45Apr 6, 2023Updated 2 years ago
- ☆13Sep 21, 2025Updated 5 months ago
- Linux install and network setup for SNAPS☆14Sep 7, 2019Updated 6 years ago
- ☆31Nov 22, 2021Updated 4 years ago
- Random Hashcat Scrips☆36Oct 12, 2024Updated last year
- 一个LDAP请求监听器,摆脱dnslog平台和java☆34Feb 4, 2023Updated 3 years ago
- Rule Processor Y is a next-gen Rule processor with complex multibyte character support built to support Hashcat☆36Nov 25, 2025Updated 3 months ago
- A new web frontend for Hashtopolis☆42Updated this week
- Create n-grams of wordlists based on words, characters, or charsets to use in offline password attacks and data analysis☆34Jun 27, 2024Updated last year