lunasec-io / Spring4Shell-POC

Related projects ⓘ

Alternatives and complementary repositories for Spring4Shell-POC

• dbrwsky / Nuclei-BurpExtension
  Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.
  ☆117Updated last year
• wdahlenburg / interactsh-collaborator
  Burpsuite plugin for Interact.sh
  ☆198Updated 4 months ago
• Static-Flow / BurpSuiteAutoCompletion
  This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.
  ☆162Updated 3 years ago
• laluka / jolokia-exploitation-toolkit
  jolokia-exploitation-toolkit
  ☆278Updated 7 months ago
• GoSecure / template-injection-workshop
  Workshop on Template Injection (6 exercises) covering Twig, Jinja2, Tornado, Velocity and Freemaker engines.
  ☆121Updated last year
• qtc-de / beanshooter
  JMX enumeration and attacking tool.
  ☆392Updated last month
• 0xmoot / s3sec
  Check AWS S3 instances for read/write/delete access
  ☆121Updated 2 years ago
• rayhan0x01 / nodejs-websocket-sqli
  A simple NodeJS WebSocket WebApp vulnerable to blind SQL injection
  ☆69Updated 3 years ago
• pentagridsec / PentagridScanController
  Improve automated and semi-automated active scanning in Burp Pro
  ☆60Updated 2 years ago
• hackvertor / hackvertor
  ☆170Updated 2 weeks ago
• akabe1 / OAUTHScan
  Burp Suite Extension useful to verify OAUTHv2 and OpenID security
  ☆169Updated 3 weeks ago
• woodpecker-appstore / log4j-payload-generator
  Log4j jndi injects the Payload generator
  ☆489Updated 2 years ago
• httpvoid / CVE-Reverse
  ☆278Updated 3 years ago
• GoSecure / xxe-workshop
  Workshop given at Hack in Paris 2019
  ☆121Updated last year
• bcoles / jira_scan
  A simple remote scanner for Atlassian Jira
  ☆118Updated last year
• neex / ghostinthepdf
  ☆158Updated 3 years ago
• STMCyber / RmiTaste
  RmiTaste allows security professionals to detect, enumerate, interact and exploit RMI services by calling remote methods with gadgets fro…
  ☆106Updated 4 years ago
• PortSwigger / portable-data-exfiltration
  This repo contains all the injections mentioned in my talk and enumerators.
  ☆121Updated 11 months ago
• teambi0s / dfunc-bypasser
  This tool is for letting you know how strong your disable_functions is and how you can bypass that.
  ☆113Updated 5 years ago
• PortSwigger / auth-analyzer
  ☆71Updated 6 months ago
• PortSwigger / active-scan-plus-plus
  ActiveScan++ Burp Suite Plugin
  ☆208Updated 11 months ago
• BobTheShoplifter / Spring4Shell-POC
  Spring4Shell Proof Of Concept/And vulnerable application CVE-2022-22965
  ☆360Updated 2 years ago
• synopsys-sig / ATOR-Burp
  ☆78Updated 6 months ago
• HLOverflow / XXE-study
  This repository contains various XXE labs set up for different languages and their different parsers. This may alternatively serve as a p…
  ☆101Updated 7 months ago
• d3k4z / burp-copy-as-ffuf
  Burp Extension that copies a request and builds a FFUF skeleton
  ☆107Updated last year
• Accenture / jenkins-attack-framework
  ☆555Updated 3 years ago
• pyn3rd / Spring-Boot-Vulnerability
  ☆398Updated 2 years ago
• jfrog / text4shell-tools
  ☆104Updated 2 years ago
• h4x0r-dz / RCE-Exploit-in-BIG-IP
  ☆206Updated 3 years ago