pyn3rd / Spring-Boot-VulnerabilityLinks
☆406Updated 3 years ago
Alternatives and similar repositories for Spring-Boot-Vulnerability
Users that are interested in Spring-Boot-Vulnerability are comparing it to the libraries listed below
Sorting:
- SSRF plugin for burp Automates SSRF Detection in all of the Request☆586Updated 4 years ago
- jolokia-exploitation-toolkit☆291Updated 6 months ago
- List DTDs and generate XXE payloads using those local DTDs.☆631Updated last year
- When MVC magic turns black☆292Updated 4 years ago
- A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)☆623Updated last year
- Burp Extension for a passive scanning JS files for endpoint links.☆173Updated 5 years ago
- HopLa Burp Suite Extender plugin - Adds autocompletion support and useful payloads in Burp Suite☆753Updated 2 weeks ago
- Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.☆601Updated 4 years ago
- Use HTTP Smuggling Lab to learn HTTP Smuggling.☆348Updated 2 years ago
- Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…☆251Updated 6 months ago
- Grafana Unauthorized arbitrary file reading vulnerability☆362Updated 2 years ago
- ☆282Updated 3 years ago
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability☆879Updated 3 years ago
- DNS rebinding toolkit☆253Updated 2 years ago
- Small Tool written based on chaos from projectdiscovery.io☆173Updated 8 months ago
- PoC collection of Atlassian(Jira, Confluence, Bitbucket) products and Jenkins, Solr, Nexus☆173Updated 2 months ago
- ☆205Updated last week
- SSRFuzz is a tool to find Server Side Request Forgery vulnerabilities, with CRLF chaining capabilities☆183Updated 4 years ago
- Burp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.☆203Updated last year
- JMX enumeration and attacking tool.☆443Updated 3 months ago
- Issues with WebSocket reverse proxying allowing to smuggle HTTP requests☆368Updated 10 months ago
- essential templates for kenzer [DEPRECATED]☆116Updated 2 years ago
- Burp Extension for a passive scanning JS files for endpoint links.☆788Updated last year
- Burp Extensions Api☆171Updated 2 weeks ago
- Smart ssrf scanner using different methods like parameter brute forcing in post and get...☆276Updated 4 years ago
- A blind XXE injection callback handler. Uses HTTP and FTP to extract information. Originally written in Ruby by ONsec-Lab.☆521Updated 4 years ago
- That repository contains my updates to the well know java deserialization exploitation tool ysoserial.☆182Updated 3 years ago
- HackerOne "in scope" domains☆451Updated this week
- Spring Boot Actuator (jolokia) XXE/RCE☆317Updated 5 years ago
- Burp Suite Extension - Trigger actions and reshape HTTP request/response and WebSocket traffic using configurable rules☆102Updated 7 months ago