Alternatives and similar repositories for Spring4Shell-POC

Users that are interested in Spring4Shell-POC are comparing it to the libraries listed below

• GoSecure / template-injection-workshop
  Workshop on Template Injection (6 exercises) covering Twig, Jinja2, Tornado, Velocity and Freemaker engines.
  ☆128Updated 2 years ago
• akabe1 / OAUTHScan
  Burp Suite Extension useful to verify OAUTHv2 and OpenID security
  ☆174Updated last year
• PortSwigger / active-scan-plus-plus
  ActiveScan++ Burp Suite Plugin
  ☆234Updated 2 months ago
• BobTheShoplifter / Spring4Shell-POC
  Spring4Shell Proof Of Concept/And vulnerable application CVE-2022-22965
  ☆372Updated 2 years ago
• PortSwigger / portable-data-exfiltration
  This repo contains all the injections mentioned in my talk and enumerators.
  ☆130Updated last year
• Static-Flow / BurpSuiteAutoCompletion
  This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.
  ☆164Updated 4 years ago
• GoSecure / xxe-workshop
  Workshop given at Hack in Paris 2019
  ☆124Updated 2 years ago
• httpvoid / CVE-Reverse
  ☆282Updated 3 years ago
• wdahlenburg / interactsh-collaborator
  Burpsuite plugin for Interact.sh
  ☆227Updated last year
• knqyf263 / CVE-2021-40346
  CVE-2021-40346 PoC (HAProxy HTTP Smuggling)
  ☆41Updated 4 years ago
• laluka / jolokia-exploitation-toolkit
  jolokia-exploitation-toolkit
  ☆298Updated 10 months ago
• HLOverflow / XXE-study
  This repository contains various XXE labs set up for different languages and their different parsers. This may alternatively serve as a p…
  ☆112Updated last year
• dbrwsky / Nuclei-BurpExtension
  Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.
  ☆119Updated 2 years ago
• SecuraBV / jws2pubkey
  jws2pubkey tool
  ☆40Updated 4 months ago
• PortSwigger / hackvertor
  ☆100Updated last month
• six2dez / burp-bounty-profiles
  Burp Bounty profiles compilation, feel free to contribute!
  ☆148Updated 4 years ago
• wallarm / jwt-heartbreaker
  The Burp extension to check JWT (JSON Web Tokens) for using keys from known from public sources
  ☆136Updated 5 years ago
• mpgn / CVE-2019-7609
  RCE on Kibana versions before 5.6.15 and 6.6.0 in the Timelion visualizer
  ☆56Updated 5 years ago
• bcoles / jira_scan
  A simple remote scanner for Atlassian Jira
  ☆121Updated 2 years ago
• 0x48piraj / jiraffe
  One stop place for exploiting Jira instances in your proximity
  ☆190Updated last year
• 0xmoot / s3sec
  Check AWS S3 instances for read/write/delete access
  ☆121Updated 3 years ago
• alt3kx / CVE-2022-22965
  Spring Framework RCE (CVE-2022-22965) Nmap (NSE) Checker (Non-Intrusive)
  ☆102Updated 3 years ago
• PortSwigger / auth-matrix
  AuthMatrix is a Burp Suite extension that provides a simple way to test authorization in web applications and web services.
  ☆43Updated 2 years ago
• d3k4z / burp-copy-as-ffuf
  Burp Extension that copies a request and builds a FFUF skeleton
  ☆111Updated 2 years ago
• Static-Flow / BurpSuite-Team-Extension
  This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …
  ☆262Updated 3 years ago
• g3rzi / HackingKubernetes
  This repository contain any information that can be used to hack Kubernetes
  ☆110Updated 3 years ago
• PortSwigger / pentest-mapper
  A Burp Suite Extension for Application Penetration Testing to map flows and vulnerabilities
  ☆120Updated last year
• 0xDexter0us / Log4J-Scanner
  Burp extension to scan Log4Shell (CVE-2021-44228) vulnerability pre and post auth.
  ☆101Updated 3 years ago
• silentsignal / burp-text4shell
  Text4Shell scanner for Burp Suite
  ☆191Updated 3 years ago
• artssec / burp-exporter
  Exporter is a Burp Suite extension to copy a request to a file or the clipboard as multiple programming languages functions.
  ☆178Updated 4 years ago