Alternatives and similar repositories for Spring4Shell-POC

Users that are interested in Spring4Shell-POC are comparing it to the libraries listed below

• Static-Flow / BurpSuiteAutoCompletion
  This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.
  ☆164Updated 4 years ago
• dbrwsky / Nuclei-BurpExtension
  Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.
  ☆119Updated last year
• httpvoid / CVE-Reverse
  ☆281Updated 3 years ago
• PortSwigger / active-scan-plus-plus
  ActiveScan++ Burp Suite Plugin
  ☆224Updated 2 weeks ago
• pentagridsec / PentagridScanController
  Improve automated and semi-automated active scanning in Burp Pro
  ☆61Updated 2 years ago
• laluka / jolokia-exploitation-toolkit
  jolokia-exploitation-toolkit
  ☆290Updated 5 months ago
• woodpecker-appstore / log4j-payload-generator
  Log4j jndi injects the Payload generator
  ☆487Updated 3 years ago
• PortSwigger / portable-data-exfiltration
  This repo contains all the injections mentioned in my talk and enumerators.
  ☆126Updated last year
• BobTheShoplifter / Spring4Shell-POC
  Spring4Shell Proof Of Concept/And vulnerable application CVE-2022-22965
  ☆368Updated 2 years ago
• GoSecure / template-injection-workshop
  Workshop on Template Injection (6 exercises) covering Twig, Jinja2, Tornado, Velocity and Freemaker engines.
  ☆126Updated 2 years ago
• veracode-research / spring-view-manipulation
  When MVC magic turns black
  ☆292Updated 4 years ago
• appsecco / dvja
  Damn Vulnerable Java (EE) Application
  ☆138Updated last year
• PortSwigger / auth-analyzer
  ☆80Updated last year
• detectify / Varnish-H2-Request-Smuggling
  ☆56Updated 3 years ago
• nccgroup / CollaboratorPlusPlus
  ☆148Updated 3 years ago
• karthikuj / cve-2022-42889-text4shell-docker
  Dockerized POC for CVE-2022-42889 Text4Shell
  ☆76Updated 2 years ago
• pimps / ysoserial-modified
  That repository contains my updates to the well know java deserialization exploitation tool ysoserial.
  ☆180Updated 3 years ago
• 0xmoot / s3sec
  Check AWS S3 instances for read/write/delete access
  ☆121Updated 3 years ago
• alt3kx / CVE-2022-22965
  Spring Framework RCE (CVE-2022-22965) Nmap (NSE) Checker (Non-Intrusive)
  ☆102Updated 3 years ago
• sharathkramadas / k8s-nuclei-templates
  Nuclei templates for K8S security scanning
  ☆101Updated 3 years ago
• simioni87 / auth_analyzer
  Burp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.
  ☆201Updated 11 months ago
• pyn3rd / Spring-Boot-Vulnerability
  ☆405Updated 3 years ago
• Static-Flow / BurpSuite-Team-Extension
  This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …
  ☆259Updated 2 years ago
• wdahlenburg / interactsh-collaborator
  Burpsuite plugin for Interact.sh
  ☆222Updated 11 months ago
• PortSwigger / nginx-alias-traversal
  Burp extension to detect alias traversal via NGINX misconfiguration at scale.
  ☆54Updated 3 years ago
• mhaskar / Bughound
  Static code analysis tool based on Elasticsearch
  ☆129Updated 4 years ago
• PortSwigger / autorize
  Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…
  ☆250Updated 6 months ago
• qtc-de / beanshooter
  JMX enumeration and attacking tool.
  ☆441Updated 2 months ago
• PortSwigger / auth-matrix
  AuthMatrix is a Burp Suite extension that provides a simple way to test authorization in web applications and web services.
  ☆42Updated last year
• pry0cc / proteus
  A projectdiscovery driven attack surface monitoring bot powered by axiom
  ☆183Updated 2 years ago