silentsignal / burp-log4shell
Log4Shell scanner for Burp Suite
☆484Updated last year
Alternatives and similar repositories for burp-log4shell:
Users that are interested in burp-log4shell are comparing it to the libraries listed below
- HopLa Burp Suite Extender plugin - Adds autocompletion support and useful payloads in Burp Suite☆742Updated 3 years ago
- Log4j jndi injects the Payload generator☆486Updated 3 years ago
- Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user☆1,012Updated 2 years ago
- Spring4Shell Proof Of Concept/And vulnerable application CVE-2022-22965☆366Updated 2 years ago
- SSRF plugin for burp Automates SSRF Detection in all of the Request☆575Updated 4 years ago
- Nuclei plugin for BurpSuite☆1,234Updated 7 months ago
- Burpsuite extension for log4j2rce☆28Updated 3 years ago
- A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)☆602Updated last year
- Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.☆595Updated 4 years ago
- ☆520Updated last year
- project-blacklist3r☆537Updated last month
- CVE-2021-42287/CVE-2021-42278 Scanner & Exploiter.☆1,365Updated 3 years ago
- Java RMI Vulnerability Scanner☆860Updated 9 months ago
- ☆560Updated 3 years ago
- mssqlproxy is a toolkit aimed to perform lateral movement in restricted environments through a compromised Microsoft SQL Server via socke…☆741Updated 4 years ago
- IOXIDResolver.py from AirBus Security☆243Updated last year
- WSO2 RCE (CVE-2022-29464) exploit and writeup.☆372Updated 2 years ago
- RCE 0-day for GhostScript 9.50 - Payload generator☆546Updated 3 years ago
- Tool to help exploit XXE vulnerabilities☆559Updated 2 years ago
- Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…☆245Updated 4 months ago
- EPSS & VEDAS Score Aggregator for CVEs☆235Updated this week
- Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user☆861Updated 2 years ago
- List DTDs and generate XXE payloads using those local DTDs.☆625Updated last year
- Ghostcat read file/code execute,CNVD-2020-10487(CVE-2020-1938)☆385Updated 5 years ago
- Grafana Unauthorized arbitrary file reading vulnerability☆358Updated 2 years ago
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability☆864Updated 3 years ago
- JNDI-Exploitation-Kit(A modified version of the great JNDI-Injection-Exploit created by @welk1n. This tool can be used to start an HTTP S…☆920Updated 3 years ago
- 🐱💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks☆938Updated 3 years ago
- Because just a dark theme wasn't enough!☆561Updated 4 months ago
- Simple Python 3 script to detect the "Log4j" Java library vulnerability (CVE-2021-44228) for a list of URLs with multithreading☆196Updated 3 years ago