This includes CVE-2022-22963, a Spring SpEL / Expression Resource Access Vulnerability, as well as CVE-2022-22965, the spring-webmvc/spring-webflux RCE termed "SpringShell".
☆14Mar 31, 2022Updated 3 years ago
Alternatives and similar repositories for Spring-CVE
Users that are interested in Spring-CVE are comparing it to the libraries listed below
Sorting:
- Lazy SPL to detect Spring4Shell exploitation☆12Jul 8, 2022Updated 3 years ago
- spring-core单个图形化利用工具,CVE-2022-22965及修复方案已出☆17Apr 2, 2022Updated 3 years ago
- CVE-2022-22965 poc including reverse-shell support☆13Nov 29, 2023Updated 2 years ago
- try to determine if a host is vulnerable to SpringShell CVE‐2022‐22965 and CVE‐2022‐22963☆23Mar 8, 2026Updated last week
- ☆14Jul 27, 2020Updated 5 years ago
- NSE script to detect ProxyOracle☆13Aug 30, 2021Updated 4 years ago
- CVE-2022-22965 - CVE-2010-1622 redux☆19Apr 18, 2023Updated 2 years ago
- 甲方企业安全建设开源之路☆10Oct 11, 2018Updated 7 years ago
- dockerfile of Acunetix Web Vulnerability Scanner14(210615184)☆14Jun 24, 2021Updated 4 years ago
- CVE-2022-22947 memshell☆19Mar 18, 2022Updated 4 years ago
- ☆31Apr 5, 2022Updated 3 years ago
- Describe how to use ffuf different options with examples☆13Jun 13, 2022Updated 3 years ago
- CLI tool written in Go to generate Canary Tokens from https://canarytokens.org☆13Aug 22, 2025Updated 6 months ago
- Spring Framework RCE (Quick pentest notes)☆17Apr 7, 2022Updated 3 years ago
- ☆69Aug 11, 2020Updated 5 years ago
- 自动采集代理IP池工具☆17May 30, 2022Updated 3 years ago
- Golang Command & Control Server For Managing And Remote Accessing Machines Via Web Interface☆13Apr 13, 2023Updated 2 years ago
- A Safer PoC for CVE-2022-22965 (Spring4Shell)☆44May 27, 2022Updated 3 years ago
- CVE-2022-22965 : about spring core rce☆50Apr 1, 2022Updated 3 years ago
- 泛微E-Office文件上传漏洞(CNVD-2021-49104)☆10Nov 27, 2021Updated 4 years ago
- Registry API 未授权访问漏洞利用☆29May 17, 2023Updated 2 years ago
- An authenticator that implements two-step verification service using the Time-base OTP algorithm. (CSE Project)☆12Apr 9, 2025Updated 11 months ago
- Apache Shiro CVE-2022-32532☆13Jun 28, 2022Updated 3 years ago
- Dockerized Spring4Shell (CVE-2022-22965) PoC application and exploit☆327Aug 4, 2022Updated 3 years ago
- Spring4Shell - Spring Core RCE - CVE-2022-22965☆130Apr 4, 2022Updated 3 years ago
- vimflowy is an implementation of workflowy-style outliner on vim☆14Dec 13, 2012Updated 13 years ago
- 永恒之恶龙-Log4j漏洞安全自查工具☆40Jan 18, 2022Updated 4 years ago
- 基于 PyQt5 的 Nuclei 漏洞扫描图形化工具,支持 POC 管理、FOFA/Hunter/Shodan 资产搜索、AI 辅助分析、漏洞报告生成等功能☆38Feb 28, 2026Updated 3 weeks ago
- donLoader is a shellcode loader creation tool that uses donut to convert executable payloads into shellcode to evade detection on disk.☆20Nov 24, 2021Updated 4 years ago
- a universal and automated unpacking system☆45Dec 31, 2017Updated 8 years ago
- proxy your C2 traffic through CDN using websocket☆52Jul 24, 2022Updated 3 years ago
- Repo containing all info, scripts, etc. related to CVE-2021-44228☆10Dec 29, 2021Updated 4 years ago
- A vnc client dll for c#, written in c/c++ and c#, depends on TightVnc 2.7.10, so it can use Tight to push screen faster than vncsharp use…☆18Nov 18, 2019Updated 6 years ago
- Various tools, images, etc. to support the Wolfi OSS project☆27Updated this week
- ☆13Aug 13, 2024Updated last year
- 识别网站cms指纹☆12May 19, 2019Updated 6 years ago
- a port forwarding tool similar to lcx☆10Mar 14, 2019Updated 7 years ago
- This contains a bundle with an executable to exploit ms17-010 remote or locally. It does not require Python.☆16Jan 10, 2019Updated 7 years ago
- Gathering All Nuclei Fuzzing Templates in a Single Repo.☆11Apr 23, 2024Updated last year