Alternatives and similar repositories for Spring4Shell-POC

Users that are interested in Spring4Shell-POC are comparing it to the libraries listed below

• karthikuj / cve-2022-42889-text4shell-docker
  Dockerized POC for CVE-2022-42889 Text4Shell
  ☆75Updated 2 years ago
• alt3kx / CVE-2022-22965
  Spring Framework RCE (CVE-2022-22965) Nmap (NSE) Checker (Non-Intrusive)
  ☆102Updated 3 years ago
• Static-Flow / BurpSuiteAutoCompletion
  This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.
  ☆164Updated 4 years ago
• dbrwsky / Nuclei-BurpExtension
  Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.
  ☆119Updated last year
• GoSecure / template-injection-workshop
  Workshop on Template Injection (6 exercises) covering Twig, Jinja2, Tornado, Velocity and Freemaker engines.
  ☆125Updated 2 years ago
• HLOverflow / XXE-study
  This repository contains various XXE labs set up for different languages and their different parsers. This may alternatively serve as a p…
  ☆106Updated last year
• pentagridsec / PentagridScanController
  Improve automated and semi-automated active scanning in Burp Pro
  ☆61Updated 2 years ago
• GoSecure / xxe-workshop
  Workshop given at Hack in Paris 2019
  ☆121Updated last year
• akabe1 / OAUTHScan
  Burp Suite Extension useful to verify OAUTHv2 and OpenID security
  ☆173Updated 6 months ago
• PortSwigger / auth-analyzer
  ☆77Updated last year
• woodpecker-appstore / log4j-payload-generator
  Log4j jndi injects the Payload generator
  ☆486Updated 3 years ago
• laluka / jolokia-exploitation-toolkit
  jolokia-exploitation-toolkit
  ☆289Updated 4 months ago
• bcoles / jira_scan
  A simple remote scanner for Atlassian Jira
  ☆121Updated 2 years ago
• httpvoid / CVE-Reverse
  ☆281Updated 3 years ago
• mhaskar / Bughound
  Static code analysis tool based on Elasticsearch
  ☆129Updated 4 years ago
• STMCyber / RmiTaste
  RmiTaste allows security professionals to detect, enumerate, interact and exploit RMI services by calling remote methods with gadgets fro…
  ☆107Updated 4 years ago
• knqyf263 / CVE-2021-40346
  CVE-2021-40346 PoC (HAProxy HTTP Smuggling)
  ☆40Updated 3 years ago
• 0xmoot / s3sec
  Check AWS S3 instances for read/write/delete access
  ☆121Updated 3 years ago
• PortSwigger / portable-data-exfiltration
  This repo contains all the injections mentioned in my talk and enumerators.
  ☆126Updated last year
• BobTheShoplifter / Spring4Shell-POC
  Spring4Shell Proof Of Concept/And vulnerable application CVE-2022-22965
  ☆367Updated 2 years ago
• PortSwigger / json-web-tokens
  JWT Support for Burp
  ☆116Updated last month
• Retrospected / spring-rce-poc
  ☆86Updated 3 years ago
• PortSwigger / nginx-alias-traversal
  Burp extension to detect alias traversal via NGINX misconfiguration at scale.
  ☆54Updated 3 years ago
• tyki6 / MyJWT
  A cli for cracking, testing vulnerabilities on Json Web Token(JWT)
  ☆133Updated 2 months ago
• RandomRobbieBF / grafana-ssrf
  Authenticated SSRF in Grafana
  ☆82Updated 10 months ago
• lunasec-io / spring-rce-vulnerable-app
  Spring Boot web application vulnerable to Log4Shell (CVE-2021-44228) and the possible Spring RCE vulnerability.
  ☆34Updated 3 years ago
• sharathkramadas / k8s-nuclei-templates
  Nuclei templates for K8S security scanning
  ☆101Updated 3 years ago
• epi052 / cve-2018-15473
  Multi-threaded, IPv6 aware, wordlists/single-user username enumeration via CVE-2018-15473
  ☆108Updated last year
• wdahlenburg / interactsh-collaborator
  Burpsuite plugin for Interact.sh
  ☆221Updated 10 months ago
• notkmhn / CVE-2022-21449-TLS-PoC
  CVE-2022-21449 Proof of Concept demonstrating its usage with a client running on a vulnerable Java version and a malicious TLS server
  ☆122Updated 3 years ago