lunasec-io / Spring4Shell-POC
This is a dockerized application that is vulnerable to the Spring4Shell vulnerability (CVE-2022-22965).
☆105Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for Spring4Shell-POC
- Burpsuite plugin for Interact.sh☆198Updated 4 months ago
- ☆278Updated 3 years ago
- Burp Suite Extension useful to verify OAUTHv2 and OpenID security☆169Updated 2 weeks ago
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆117Updated last year
- This exention enables autocompletion within BurpSuite Repeater/Intruder tabs.☆162Updated 3 years ago
- ☆170Updated last week
- Spring4Shell Proof Of Concept/And vulnerable application CVE-2022-22965☆360Updated 2 years ago
- Workshop on Template Injection (6 exercises) covering Twig, Jinja2, Tornado, Velocity and Freemaker engines.☆121Updated last year
- Find CVE PoCs on GitHub☆137Updated last year
- Check AWS S3 instances for read/write/delete access☆121Updated 2 years ago
- Spring Framework RCE (CVE-2022-22965) Nmap (NSE) Checker (Non-Intrusive)☆101Updated 2 years ago
- SCodeScanner stands for Source Code scanner where the user can scans the source code for finding the Critical Vulnerabilities.☆159Updated last year
- jolokia-exploitation-toolkit☆278Updated 7 months ago
- Web dashboard for Interactsh client☆194Updated 2 weeks ago
- ☆71Updated 6 months ago
- JMX enumeration and attacking tool.☆392Updated last month
- Dockerized POC for CVE-2022-42889 Text4Shell☆75Updated last year
- Improve automated and semi-automated active scanning in Burp Pro☆60Updated 2 years ago
- Log4j jndi injects the Payload generator☆489Updated 2 years ago
- A Burp Suite Extension for Application Penetration Testing to map flows and vulnerabilities☆116Updated 11 months ago
- AuthMatrix is a Burp Suite extension that provides a simple way to test authorization in web applications and web services.☆40Updated last year
- This repo contains all the injections mentioned in my talk and enumerators.☆120Updated 11 months ago
- Burp Extension that copies a request and builds a FFUF skeleton☆107Updated last year
- POC for VMWARE CVE-2022-22954☆280Updated 2 years ago
- jws2pubkey tool☆37Updated 5 months ago
- ActiveScan++ Burp Suite Plugin☆208Updated 11 months ago
- ☆175Updated last week
- Burp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.☆185Updated 4 months ago
- Burp Extension for a passive scanning JS files for endpoint links.☆162Updated 5 years ago
- When MVC magic turns black☆285Updated 4 years ago