spaceraccoon / spring-boot-actuator-h2-rce
Sample Spring Boot App Demonstrating RCE via Exposed env Actuator and H2 Database
☆106Updated 5 years ago
Alternatives and similar repositories for spring-boot-actuator-h2-rce:
Users that are interested in spring-boot-actuator-h2-rce are comparing it to the libraries listed below
- A vulnerable application exposing Spring Boot Actuators☆122Updated 6 years ago
- 用Kali 2.0复现Apache Tomcat Session反序列化代码执行漏洞☆52Updated 4 years ago
- Atlassian JIRA Template injection vulnerability RCE☆93Updated 5 years ago
- ☆111Updated 5 years ago
- Exploitation Tool for CVE-2017-3066 targeting Adobe Coldfusion 11/12☆94Updated 2 years ago
- Apache Tomcat + MongoDB Remote Code Execution☆114Updated 4 years ago
- Directory transversal to remote code execution☆69Updated 5 years ago
- Exploit for WebSocket Vulnerability in Apache Tomcat☆166Updated 4 years ago
- Citrix ADC Vulns☆87Updated 4 years ago
- ☆65Updated 4 years ago
- ☆116Updated 5 years ago
- Apache Solr RCE via Velocity template☆108Updated 5 years ago
- Slides/Demos from the BSides Munich 2019 talk "Attacking Java RMI in 2019"☆101Updated 5 years ago
- PoC exploit for VMware Cloud Director RCE (CVE-2020-3956)☆89Updated 4 years ago
- Tool to searching sentry config on page or in javascript files and check blind SSRF☆69Updated 10 months ago
- Apache Tomcat Remote Code Execution on Windows - CGI-BIN☆77Updated 6 years ago
- ZAP/Burp plugin that generate script to reproduce a specific HTTP request (Intended for fuzzing or scripted attacks)☆29Updated 3 years ago
- CVE-2019-11580 Atlassian Crowd and Crowd Data Center RCE☆106Updated 5 years ago
- J2EEScan is a plugin for Burp Suite Proxy. The goal of this plugin is to improve the test coverage during web application penetration tes…☆74Updated 3 years ago
- Authenticated SSRF in Grafana☆81Updated 10 months ago
- Tool is to check for Cache Deception Attack Both For Authenticated and UnAuthenticated Pages☆44Updated 3 years ago
- Jsdir is a Burp Suite extension that extracts hidden paths from js files and beautifies it for further reading.☆117Updated 4 years ago
- Exploitation toolkit for RichFaces☆103Updated last year
- Apache Flink 目录遍历漏洞批量检测 (CVE-2020-17519)☆48Updated 4 years ago
- exploit Apache Flink Web Dashboard unauth rce on right way by python2 scripts☆90Updated 5 years ago
- Example Vulnerable .NET HTTP Remoting☆84Updated 6 years ago
- Gopher Tomcat Deployer☆48Updated 6 years ago
- CVE-2020-11890: Improper input validations in the usergroup table class could lead to a broken ACL configuration to RCE☆62Updated last year
- CVE-2020-5410 Spring Cloud Config directory traversal vulnerability☆31Updated 4 years ago
- S2-061 CVE-2020-17530☆29Updated 4 years ago