Alternatives and similar repositories for Spring4Shell-POC

Users that are interested in Spring4Shell-POC are comparing it to the libraries listed below

• akabe1 / OAUTHScan
  Burp Suite Extension useful to verify OAUTHv2 and OpenID security
  ☆175Updated last year
• GoSecure / template-injection-workshop
  Workshop on Template Injection (6 exercises) covering Twig, Jinja2, Tornado, Velocity and Freemaker engines.
  ☆129Updated 3 years ago
• PortSwigger / active-scan-plus-plus
  ActiveScan++ Burp Suite Plugin
  ☆244Updated last month
• httpvoid / CVE-Reverse
  ☆284Updated 4 years ago
• BobTheShoplifter / Spring4Shell-POC
  Spring4Shell Proof Of Concept/And vulnerable application CVE-2022-22965
  ☆373Updated 3 years ago
• Static-Flow / BurpSuiteAutoCompletion
  This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.
  ☆164Updated 4 years ago
• chipik / SAP_RECON
  PoC for CVE-2020-6287, CVE-2020-6286 (SAP RECON vulnerability)
  ☆225Updated 5 years ago
• Static-Flow / BurpSuite-Team-Extension
  This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …
  ☆261Updated 3 years ago
• GoSecure / xxe-workshop
  Workshop given at Hack in Paris 2019
  ☆126Updated 2 years ago
• six2dez / burp-bounty-profiles
  Burp Bounty profiles compilation, feel free to contribute!
  ☆148Updated 4 years ago
• knqyf263 / CVE-2021-40346
  CVE-2021-40346 PoC (HAProxy HTTP Smuggling)
  ☆41Updated 4 years ago
• wallarm / jwt-heartbreaker
  The Burp extension to check JWT (JSON Web Tokens) for using keys from known from public sources
  ☆138Updated 5 years ago
• HLOverflow / XXE-study
  This repository contains various XXE labs set up for different languages and their different parsers. This may alternatively serve as a p…
  ☆112Updated last year
• PortSwigger / hackvertor
  ☆99Updated 2 weeks ago
• dbrwsky / Nuclei-BurpExtension
  Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.
  ☆119Updated 2 years ago
• Sjord / jwtdemo
  Practice hacking JWT tokens
  ☆116Updated 3 years ago
• artssec / burp-exporter
  Exporter is a Burp Suite extension to copy a request to a file or the clipboard as multiple programming languages functions.
  ☆178Updated 4 years ago
• projectdiscovery / interactsh-web
  Web dashboard for Interactsh client
  ☆238Updated 3 weeks ago
• wdahlenburg / interactsh-collaborator
  Burpsuite plugin for Interact.sh
  ☆230Updated last year
• ForbiddenProgrammer / CVE-2021-21315-PoC
  CVE 2021-21315 PoC
  ☆159Updated 4 years ago
• bcoles / jira_scan
  A simple remote scanner for Atlassian Jira
  ☆121Updated 3 years ago
• karthikuj / cve-2022-42889-text4shell-docker
  Dockerized POC for CVE-2022-42889 Text4Shell
  ☆76Updated 3 years ago
• PortSwigger / json-web-tokens
  JWT Support for Burp
  ☆116Updated 7 months ago
• The-Login / DNS-Reset-Checker
  Tools to assess the DNS security of web applications
  ☆128Updated 3 years ago
• h4x0r-dz / RCE-Exploit-in-BIG-IP
  ☆205Updated 4 years ago
• pimps / ysoserial-modified
  That repository contains my updates to the well know java deserialization exploitation tool ysoserial.
  ☆184Updated 3 years ago
• ryandamour / ssrfuzz
  SSRFuzz is a tool to find Server Side Request Forgery vulnerabilities, with CRLF chaining capabilities
  ☆185Updated 4 years ago
• PortSwigger / portable-data-exfiltration
  This repo contains all the injections mentioned in my talk and enumerators.
  ☆134Updated 2 years ago
• woodpecker-appstore / log4j-payload-generator
  Log4j jndi injects the Payload generator
  ☆487Updated 4 years ago
• mhaskar / Bughound
  Static code analysis tool based on Elasticsearch
  ☆130Updated 5 years ago