silentsignal / burp-log4shellLinks
Log4Shell scanner for Burp Suite
☆486Updated last year
Alternatives and similar repositories for burp-log4shell
Users that are interested in burp-log4shell are comparing it to the libraries listed below
Sorting:
- HopLa Burp Suite Extender plugin - Adds autocompletion support and useful payloads in Burp Suite☆753Updated 2 weeks ago
- Log4j jndi injects the Payload generator☆487Updated 3 years ago
- SSRF plugin for burp Automates SSRF Detection in all of the Request☆586Updated 4 years ago
- A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)☆623Updated last year
- ☆561Updated 4 years ago
- Spring4Shell Proof Of Concept/And vulnerable application CVE-2022-22965☆368Updated 2 years ago
- Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.☆601Updated 4 years ago
- List DTDs and generate XXE payloads using those local DTDs.☆631Updated last year
- RCE 0-day for GhostScript 9.50 - Payload generator☆547Updated 3 years ago
- Nuclei plugin for BurpSuite☆1,262Updated 9 months ago
- Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…☆251Updated 6 months ago
- Grafana Unauthorized arbitrary file reading vulnerability☆362Updated 2 years ago
- Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user☆1,021Updated 2 years ago
- An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability☆879Updated 3 years ago
- ☆520Updated 2 years ago
- A Burp extension helps identifying injection flaws (LFI, RCE, SQLi), authentication/authorization issues, and HTTP 403 access violations,…☆371Updated 2 months ago
- Burp Extension for a passive scanning JS files for endpoint links.☆788Updated last year
- Simple Python 3 script to detect the "Log4j" Java library vulnerability (CVE-2021-44228) for a list of URLs with multithreading☆196Updated 3 years ago
- Tool to help exploit XXE vulnerabilities☆563Updated 2 years ago
- A fully automated, reliable, and accurate scanner for finding Spring4Shell and Spring Cloud RCE vulnerabilities☆658Updated 3 years ago
- A cheatsheet for exploiting server-side SVG processors.☆739Updated 4 years ago
- ☆315Updated 2 weeks ago
- 🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.☆421Updated 7 months ago
- Burpsuite extension for log4j2rce☆28Updated 3 years ago
- Java RMI Vulnerability Scanner☆870Updated 11 months ago
- RCE exploit for a .NET JSON deserialization vulnerability in Telerik UI for ASP.NET AJAX.☆356Updated 3 years ago
- project-blacklist3r☆554Updated 3 months ago
- JNDI-Exploitation-Kit(A modified version of the great JNDI-Injection-Exploit created by @welk1n. This tool can be used to start an HTTP S…☆926Updated 3 years ago
- A pentesting tool that dumps the source code from .git even when the directory traversal is disabled☆227Updated 3 years ago
- Because just a dark theme wasn't enough!☆565Updated 6 months ago