Alternatives and similar repositories for springboot-freemarker-ssti

Users that are interested in springboot-freemarker-ssti are comparing it to the libraries listed below

• knightswd / NoPacScan
  NoPacScan is a CVE-2021-42287/CVE-2021-42278 Scanner,it scan for more domain controllers than other script
  ☆89Updated 3 years ago
• H3rmesk1t / Fastjson-Gadgets-Automatic-Scanner
  Automatically scan jar packages by using ast to find fastjson gadgets. In particular, this project is limited to mining Gadgets that may …
  ☆50Updated 3 years ago
• shadowsock5 / ysoserial
  mvn clean package -DskipTests
  ☆46Updated 2 years ago
• tangxiaofeng7 / JavaLearning
  Learning JAVA for Security
  ☆31Updated 3 years ago
• fa1c0n1 / MyJSPWebshell
  My collection of various of JSP Webshell.
  ☆34Updated 2 years ago
• lishang520 / CVE-2022-24990
  CVE-2022-24990信息泄露+RCE 一条龙
  ☆39Updated 3 years ago
• iSafeBlue / presentation-slides
  ☆33Updated 2 years ago
• zhzhdoai / Weblogic_Vuln
  CVE-2015-4852、CVE-2016-0638、CVE-2016-3510、CVE-2019-2890漏洞POC
  ☆17Updated 4 years ago
• gh0stkey / FuckAnywhere
  FuckAnywhere - 这是一个BurpSuite Jython（Python）插件，用于在HTTP请求中随处插入你想要进行测试的代码。
  ☆52Updated 3 years ago
• Ape1ron / SpringAopInDeserializationDemo1
  在spring-aop中新发现的反序列化gadget-chain
  ☆47Updated 5 months ago
• ShangRui-hash / bucket-takeover-lab
  子域名接管的几种变体靶场
  ☆23Updated last year
• Maskhe / BugBountyNotes
  简单记录下自己在挖掘SRC
  ☆32Updated 4 years ago
• k3rwin / spring-cloud-gateway-rce
  spring-cloud-gateway-rce CVE-2022-22947
  ☆13Updated 2 years ago
• welk1n / FastjsonPocs
  一些结合第三方组件的Fastjson POC，在1.2.48以后版本中陆续被添加至黑名单。
  ☆56Updated 5 years ago
• zwjjustdoit / Xstream-1.4.17
  XSTREAM<=1.4.17漏洞复现（CVE-2021-39141、CVE-2021-39144、CVE-2021-39150）
  ☆61Updated 3 years ago
• wangsz05 / LearnDemo
  ☆13Updated 2 years ago
• Scorpio-m7 / tomcat-backdoor
  ☆54Updated 3 years ago
• JulianWu520 / ysoserial-mangguogan
  ☆4Updated 4 years ago
• bit4woo / burp-api-common
  common methods that used by my burp extension projects
  ☆51Updated last year
• s4vvysec / CVE-2024-4367-POC
  CVE-2024-4367 arbitrary js execution in pdf js
  ☆49Updated last year
• lz520520 / encrypt-js
  ☆35Updated 3 years ago
• SecCoder-Security-Lab / spring-cloud-netflix-hystrix-dashboard-cve-2021-22053
  Spring Cloud Netflix Hystrix Dashboard template resolution vulnerability CVE-2021-22053
  ☆37Updated 2 years ago
• woodpecker-appstore / rmi-deserialization-vuldb
  Java RMI反序列化漏洞插件
  ☆48Updated 4 years ago
• zrquan / burp-weblogic-scanner
  ☆20Updated 3 years ago
• jas502n / GitlabVer
  gitlab version index
  ☆63Updated 3 years ago
• midisec / CVE-2023-36899
  CVE-2023-36899漏洞的复现环境和工具，针对ASP.NET框架中的无cookie会话身份验证绕过。
  ☆30Updated last year
• flowerwind / AutoGenerateXalanPayload
  cve-2022-34169 延伸出的Jdk Xalan的payload自动生成工具，可根据不同的Jdk生成出其所对应的xslt文件
  ☆91Updated 2 years ago
• tangxiaofeng7 / Spring-Cloud-Function-Spel
  Spring Cloud Function Spel命令执行漏洞
  ☆38Updated 3 years ago
• 4nth0ny1130 / shisoserial
  一个针对shiro反序列化漏洞(CVE-2016-4437)的快速利用工具/A simple tool targeted at shiro framework attacks with ysoserial.
  ☆23Updated 2 years ago
• Firebasky / LdapBypassJndi
  The function of the tool is to inject JNDI through LDAP
  ☆28Updated 3 years ago