spaceraccoon/spring-boot-actuator-h2-rce external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

spaceraccoon/spring-boot-actuator-h2-rce

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/spaceraccoon/spring-boot-actuator-h2-rce)

Close

spaceraccoon / spring-boot-actuator-h2-rceView on GitHubMore

• External links
• Readme badge

Sample Spring Boot App Demonstrating RCE via Exposed env Actuator and H2 Database

☆109Jan 26, 2020Updated 6 years ago

Alternatives and similar repositories for spring-boot-actuator-h2-rce

Users that are interested in spring-boot-actuator-h2-rce are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• iSafeBlue / redis-rce

  View on GitHub
  Redis RCE 的几种方法
  ☆90Jun 5, 2024Updated last year
• mpgn / Spring-Boot-Actuator-Exploit

  View on GitHub
  Spring Boot Actuator (jolokia) XXE/RCE
  ☆324Jun 16, 2020Updated 5 years ago
• laluka / jolokia-exploitation-toolkit

  View on GitHub
  jolokia-exploitation-toolkit
  ☆311Dec 19, 2024Updated last year
• veracode-research / actuator-testbed

  View on GitHub
  A vulnerable application exposing Spring Boot Actuators
  ☆123Feb 25, 2019Updated 7 years ago
• pry0cc / jf

  View on GitHub
  A wrapper around jq, to help you parse jq output!
  ☆30Aug 23, 2020Updated 5 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
• euphrat1ca / CVE-2020-0618

  View on GitHub
  SQL Server Reporting Services(CVE-2020-0618)中的RCE
  ☆198Feb 15, 2020Updated 6 years ago
• w9w / Open_Redirects_list

  View on GitHub
  -
  ☆11Nov 21, 2020Updated 5 years ago
• dalconan / NaviPassRead

  View on GitHub
  Read Navicat 12 Password
  ☆19Jun 7, 2020Updated 5 years ago
• pyn3rd / Spring-Boot-Vulnerability

  View on GitHub
  ☆421Jan 5, 2022Updated 4 years ago
• lsh4ck / Langzi_SRC_Safe_Cruise

  View on GitHub
  LANGZI_SRC_安全巡航 是一款集成漏扫，验证，资产监控，自动复现并且生成结果表报的工具，实现初衷是为了帮助白帽子在SRC中节约时间成本的自动化工具。
  ☆14Jul 7, 2019Updated 6 years ago
• lc / jenkinz

  View on GitHub
  Retrieve the complete build history for every job ever created and executed on a given Jenkins instance.
  ☆66Apr 25, 2025Updated 11 months ago
• nightwatchcybersecurity / cloud_metadata_ips

  View on GitHub
  List of special metadata IPs used in cloud services
  ☆11Aug 9, 2019Updated 6 years ago
• 0xrishabh / websy

  View on GitHub
  Keep track of changes in website with WEBSY
  ☆35May 22, 2023Updated 2 years ago
• orangetw / awesome-jenkins-rce-2019

  View on GitHub
  There is no pre-auth RCE in Jenkins since May 2017, but this is the one!
  ☆607May 17, 2019Updated 6 years ago
• Proton VPN Special Offer - Get 70% off • Ad
  Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
• vp777 / surferFTP

  View on GitHub
  SSRF to TCP Port Scanning, Banner and Private IP Disclosure by abusing the FTP protocol/clients
  ☆71Jul 29, 2021Updated 4 years ago
• woodpecker-framework / woodpecker-bcel

  View on GitHub
  woodpecker框架专用bcel库
  ☆12Apr 30, 2021Updated 4 years ago
• welk1n / JNDI-Injection-Bypass

  View on GitHub
  Some payloads of JNDI Injection in JDK 1.8.0_191+
  ☆485Dec 9, 2020Updated 5 years ago
• aleenzz / .NET_study

  View on GitHub
  跟.net相关的学习
  ☆88Jun 24, 2024Updated last year
• Damian89 / extended-ssrf-search

  View on GitHub
  Smart ssrf scanner using different methods like parameter brute forcing in post and get...
  ☆277Feb 11, 2021Updated 5 years ago
• BishopFox / GadgetProbe

  View on GitHub
  Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
  ☆612Mar 4, 2021Updated 5 years ago
• augustd / burp-suite-swaggy

  View on GitHub
  Burp Suite extension for parsing Swagger web service definition files
  ☆19Jul 15, 2025Updated 8 months ago
• whitel1st / docem

  View on GitHub
  A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)
  ☆684Jan 28, 2024Updated 2 years ago
• veracode-research / solr-injection

  View on GitHub
  Apache Solr Injection Research
  ☆581Jan 28, 2020Updated 6 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
• jas502n / DBconfigReader

  View on GitHub
  泛微ecology OA系统接口存在数据库配置信息泄露漏洞
  ☆50Jul 13, 2020Updated 5 years ago
• XTeam-Wing / WingKit

  View on GitHub
  CobaltStrike Extentions
  ☆40Oct 24, 2021Updated 4 years ago
• ZeddYu / HTTP-Smuggling-Lab

  View on GitHub
  Use HTTP Smuggling Lab to learn HTTP Smuggling.
  ☆348Nov 20, 2022Updated 3 years ago
• hahwul / websocket-connection-smuggler

  View on GitHub
  websocket-connection-smuggler
  ☆66Jan 22, 2020Updated 6 years ago
• JackOfMostTrades / gadgetinspector

  View on GitHub
  A byte code analyzer for finding deserialization gadget chains in Java applications
  ☆1,080Jun 15, 2021Updated 4 years ago
• cckuailong / nginx_vultarget

  View on GitHub
  ☆13Feb 9, 2022Updated 4 years ago
• mindedsecurity / graphqlschema2payload

  View on GitHub
  Reverse engineers GQL Schema and generates template payloads
  ☆46Apr 5, 2019Updated 7 years ago
• ka1n4t / CVE-2020-17530

  View on GitHub
  ☆65Dec 9, 2020Updated 5 years ago
• KTH-LangSec / SerialDetector

  View on GitHub
  A proof-of-concept tool for detection and exploitation Object Injection Vulnerabilities in .NET applications
  ☆63Jan 29, 2021Updated 5 years ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• osamahamad / CVE-2020-5410-POC

  View on GitHub
  CVE-2020-5410 Spring Cloud Config directory traversal vulnerability
  ☆31Jun 16, 2020Updated 5 years ago
• smiegles / subdomainDB

  View on GitHub
  SubdomainDB is a simple self-hosted API that allows you to maintain your own subdomain database.
  ☆30Jan 8, 2018Updated 8 years ago
• peterjson31337 / tetctf2021

  View on GitHub
  tetctf2020_amf_writeups
  ☆23Jan 3, 2021Updated 5 years ago
• 0xC01DF00D / Collabfiltrator

  View on GitHub
  Exfiltrate blind Remote Code Execution and SQL injection output over DNS via Burp Collaborator.
  ☆277Jan 28, 2025Updated last year
• msrkp / PPScan

  View on GitHub
  Client Side Prototype Pollution Scanner
  ☆525Sep 17, 2022Updated 3 years ago
• pwntester / JRE8u20_RCE_Gadget

  View on GitHub
  JRE8u20_RCE_Gadget
  ☆255Jul 1, 2016Updated 9 years ago
• jas502n / SpringBoot_Actuator_RCE

  View on GitHub
  SpringBoot_Actuator_RCE
  ☆95May 26, 2020Updated 5 years ago