This is a dockerized application that is vulnerable to the Spring4Shell vulnerability (CVE-2022-22965).
☆106Aug 4, 2022Updated 3 years ago
Alternatives and similar repositories for Spring4Shell-POC
Users that are interested in Spring4Shell-POC are comparing it to the libraries listed below
Sorting:
- Dockerized Spring4Shell (CVE-2022-22965) PoC application and exploit☆327Aug 4, 2022Updated 3 years ago
- Spring Boot web application vulnerable to Log4Shell (CVE-2021-44228) and the possible Spring RCE vulnerability.☆34Mar 31, 2022Updated 3 years ago
- Saves pages to Wayback machine☆12Dec 2, 2024Updated last year
- Spring4Shell Proof Of Concept/And vulnerable application CVE-2022-22965☆374Nov 9, 2022Updated 3 years ago
- A Safer PoC for CVE-2022-22965 (Spring4Shell)☆44May 27, 2022Updated 3 years ago
- 分支出了些问题,无法合并到main,迁移至https://github.com/hktalent/scan4all☆17Dec 18, 2023Updated 2 years ago
- try to determine if a host is vulnerable to SpringShell CVE‐2022‐22965 and CVE‐2022‐22963☆23Mar 8, 2026Updated last week
- NSE script to detect ProxyOracle☆13Aug 30, 2021Updated 4 years ago
- ☆86Mar 31, 2022Updated 3 years ago
- Spring4Shell Burp Scanner☆72Apr 3, 2022Updated 3 years ago
- ☆31Apr 5, 2022Updated 3 years ago
- Spring Cloud Gateway < 3.0.7 & < 3.1.1 Code Injection (RCE)☆38Mar 4, 2022Updated 4 years ago
- Spring Boot web application vulnerable to Log4Shell (CVE-2021-44228).☆1,139Apr 26, 2024Updated last year
- Burp Suite Extensions☆12Oct 19, 2021Updated 4 years ago
- A fully automated, reliable, and accurate scanner for finding Spring4Shell and Spring Cloud RCE vulnerabilities☆657Apr 7, 2022Updated 3 years ago
- Generate a dynamic PAC script that will route traffic to your Burp proxy only if it matches the scope defined in your Burp target.☆33Nov 8, 2021Updated 4 years ago
- ☆33Oct 29, 2020Updated 5 years ago
- All about CVE-2018-14667; From what it is to how to successfully exploit it.☆50Nov 30, 2018Updated 7 years ago
- Dockerized POC for CVE-2022-42889 Text4Shell☆76Nov 14, 2022Updated 3 years ago
- A straightforward tool for exploiting SMTP Smuggling vulnerabilities.☆14Jul 22, 2024Updated last year
- ☆23Nov 5, 2021Updated 4 years ago
- Static Token And Credential Scanner☆95May 8, 2023Updated 2 years ago
- ☆12Feb 18, 2022Updated 4 years ago
- Burp Suite Extension useful to verify OAUTHv2 and OpenID security☆176Oct 26, 2024Updated last year
- Spring Framework RCE (CVE-2022-22965) Nmap (NSE) Checker (Non-Intrusive)☆101Apr 7, 2022Updated 3 years ago
- List of Trusted Types bypasses☆102Apr 15, 2024Updated last year
- Oracle Database Penetration Testing Reference (10g/11g)☆40Jul 28, 2018Updated 7 years ago
- SpringCore0day from https://share.vx-underground.org/ & some additional links☆398Mar 31, 2022Updated 3 years ago
- Apache Log4j 远程代码执行☆90May 14, 2023Updated 2 years ago
- WSO2 RCE (CVE-2022-29464) exploit and writeup.☆378Apr 27, 2022Updated 3 years ago
- Code By:Tas9er / ThinkCMF漏洞安全测试☆13Jan 15, 2021Updated 5 years ago
- ctfs write-up☆30Jul 21, 2023Updated 2 years ago
- CVE-2022-21449 Proof of Concept demonstrating its usage with a client running on a vulnerable Java version and a malicious TLS server☆123Updated this week
- Enumerate subdomains by parsing Rapid7 FDNS dumps and CA transparency logs☆26Apr 26, 2019Updated 6 years ago
- Language-agnostic workflow builder. Modular code that goes from dev to prod in a minute with principled design decisions.☆13Mar 11, 2024Updated 2 years ago
- PHP binary bugs advisory☆178Jul 30, 2022Updated 3 years ago
- Nginx 18.1 04/09/22 zero-day repo☆371Apr 12, 2022Updated 3 years ago
- CVE-2020-2551 POC to use in Internet☆22May 26, 2020Updated 5 years ago
- ☆2,078Dec 13, 2021Updated 4 years ago