tpt11fb/SpringVulScan

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/tpt11fb/SpringVulScan)

tpt11fb / SpringVulScan

burpsuite 的Spring漏洞扫描插件。SpringVulScan：支持检测：路由泄露|CVE-2022-22965|CVE-2022-22963|CVE-2022-22947|CVE-2016-4977

☆154

Alternatives and similar repositories for SpringVulScan

Users that are interested in SpringVulScan are comparing it to the libraries listed below

Sorting:

Firebasky / ScanShiro
View on GitHub
一个批量扫描shiro漏洞的工具,支持AES/CMG
☆79Jan 18, 2023Updated 3 years ago
tpt11fb / AttackTomcat
View on GitHub
Tomcat常见漏洞GUI利用工具。CVE-2017-12615 PUT文件上传漏洞、tomcat-pass-getshell 弱认证部署war包、弱口令爆破、CVE-2020-1938 Tomcat AJP文件读取/包含
☆250Nov 15, 2022Updated 3 years ago
EASY233 / BpScan
View on GitHub
一款用于辅助渗透测试工程师日常渗透测试的Burp被动漏扫插件
☆242Nov 25, 2022Updated 3 years ago
k4i-x3i0 / jndiExploit-beta
View on GitHub
魔改版，实现冰蝎直连内存马，无需修改冰蝎客户端
☆76Jan 3, 2024Updated 2 years ago
Lotus6 / ConfluenceMemshell
View on GitHub
Confluence CVE 2021，2022，2023 利用工具，支持命令执行，哥斯拉，冰蝎内存马注入
☆554Feb 1, 2024Updated 2 years ago
savior-only / Spring_All_Reachable
View on GitHub
Spring漏洞综合利用工具
☆674Jul 5, 2023Updated 2 years ago
metaStor / SpringScan
View on GitHub
SpringScan 漏洞检测 Burp插件
☆606Nov 14, 2023Updated 2 years ago
novysodope / RMI_Inj_MemShell
View on GitHub
rmi打内存马工具，适用于目标用不了ldap的情况
☆253Jul 12, 2023Updated 2 years ago
SummerSec / SpringExploit
View on GitHub
🚀 一款为了学习go而诞生的漏洞利用工具
☆451Jun 14, 2022Updated 3 years ago
whwlsfb / SpringSpider
View on GitHub
Spring Actuator端点的BurpSuite被动扫描插件。
☆202Nov 2, 2022Updated 3 years ago
TD0U / WeaverScan
View on GitHub
泛微oa漏洞利用工具
☆255Jan 4, 2023Updated 3 years ago
yuyan-sec / Doraemon
View on GitHub
渗透辅助 BurpSuite 小插件
☆232Nov 26, 2025Updated 3 months ago
0x727 / BypassPro
View on GitHub
对Auth/Waf 自动化bypass的burpsuite插件
☆1,104Feb 28, 2026Updated 3 weeks ago
F6JO / RouteVulScan
View on GitHub
Burpsuite - Route Vulnerable Scanning 递归式被动检测脆弱路径的burp插件
☆1,313Jun 29, 2024Updated last year
HHa1ey / TKHunter
View on GitHub
一个基于JavaFX写的一个Hunter资产测绘平台的图形化工具
☆121Nov 9, 2022Updated 3 years ago
Tas9er / ByPassBehinder4J
View on GitHub
冰蝎Java WebShell自动化免杀生成
☆783Mar 15, 2022Updated 4 years ago
Summer177 / seeyon_exp
View on GitHub
致远OA综合利用工具
☆417Jun 3, 2021Updated 4 years ago
inbug-team / SweetBabyScan
View on GitHub
Red Tools 渗透测试
☆585Jul 7, 2022Updated 3 years ago
ffffffff0x / burp_nu_te_gen
View on GitHub
nuclei模版生成插件
☆109Dec 19, 2023Updated 2 years ago
passer-W / shc_bypass
View on GitHub
内存加载shellcode绕过waf
☆209Jul 25, 2022Updated 3 years ago
yuyan-sec / RedisEXP
View on GitHub
Redis 漏洞利用工具
☆937Jan 26, 2025Updated last year
z2p / sweetPotato
View on GitHub
基于burpsuite的资产分析工具
☆475Apr 29, 2023Updated 2 years ago
zhaoyumi / WeaverExploit_All
View on GitHub
泛微最近的漏洞利用工具（PS：2023）
☆481Dec 14, 2023Updated 2 years ago
rebeyond / JNDInjector
View on GitHub
一个高度可定制化的JNDI和Java反序列化利用工具
☆472Jan 17, 2023Updated 3 years ago
Tas9er / UEditorGetShell
View on GitHub
UEditor编辑器批量GetShell / Code By:Tas9er
☆241Jul 10, 2022Updated 3 years ago
c0olw / NacosRce
View on GitHub
Nacos JRaft Hessian 反序列化 RCE 加载字节码注入内存马不出网利用
☆847Jul 7, 2023Updated 2 years ago
west9b / Weaver-Eoffice-getshell
View on GitHub
泛微 eoffice10 前台 getshell
☆59Aug 22, 2022Updated 3 years ago
KimJun1010 / WeblogicTool
View on GitHub
WeblogicTool，GUI漏洞利用工具，支持漏洞检测、命令执行、内存马注入、密码解密等（深信服深蓝实验室天威战队强力驱动）
☆1,776Nov 1, 2023Updated 2 years ago
cseroad / Webshell_Generate
View on GitHub
用于生成各类免杀webshell
☆1,290Jan 8, 2026Updated 2 months ago
a1phaboy / FastjsonScan
View on GitHub
Fastjson扫描器，可识别版本、依赖库、autoType状态等。A tool to distinguish fastjson ,version and dependency
☆1,050Oct 7, 2022Updated 3 years ago
shmilylty / SharpHostInfo
View on GitHub
SharpHostInfo是一款快速探测内网主机信息工具（深信服深蓝实验室天威战队强力驱动）
☆625Dec 15, 2022Updated 3 years ago
Schira4396 / VcenterKiller
View on GitHub
一款针对Vcenter的综合利用工具，包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j，提供一键上传webs…
☆1,468Apr 25, 2024Updated last year
Ryze-T / Sylas
View on GitHub
数据库综合利用工具
☆543Feb 16, 2022Updated 4 years ago
KrystianLi / ExchangeOWA
View on GitHub
一款OutLook信息收集工具
☆243May 23, 2023Updated 2 years ago
Rvn0xsy / PassDecode-jar
View on GitHub
帆软/致远密码解密工具
☆359Jul 29, 2021Updated 4 years ago
kN6jq / gatherBurp
View on GitHub
一款强大的 burp 安全测试插件，集成多种安全测试功能，支持自动化扫描和手动测试。
☆659Sep 26, 2025Updated 5 months ago
Hel10-Web / Databasetools
View on GitHub
一款用Go语言编写的数据库自动化提权工具，支持Mysql、MSSQL、Postgresql、Oracle、Redis数据库提权、命令执行、爆破以及ssh连接
☆860Aug 30, 2023Updated 2 years ago
zxcv0221 / JavaSec
View on GitHub
Java安全学习历程
☆42Jul 7, 2023Updated 2 years ago
xiaokp7 / TongdaOATool
View on GitHub
通达OA漏洞检测工具
☆343Jul 11, 2024Updated last year