veracode-research / actuator-testbedLinks
A vulnerable application exposing Spring Boot Actuators
☆123Updated 6 years ago
Alternatives and similar repositories for actuator-testbed
Users that are interested in actuator-testbed are comparing it to the libraries listed below
Sorting:
- Exploitation Tool for CVE-2017-3066 targeting Adobe Coldfusion 11/12☆95Updated 2 years ago
- ☆73Updated 3 years ago
- ☆111Updated 5 years ago
- 🐱💻 Poc of CVE-2019-7238 - Nexus Repository Manager 3 Remote Code Execution 🐱💻☆152Updated 6 years ago
- forked from frohoff/ysoserial and added my own payloads.☆152Updated 5 years ago
- Spring Boot Actuator (jolokia) XXE/RCE☆319Updated 5 years ago
- GitLab 11.4.7 SSRF配合redis远程执行代码☆123Updated 6 years ago
- fastjson-1.2.47☆66Updated 6 years ago
- poison and relay NTLM credentials☆175Updated 6 years ago
- Slides/Demos from the BSides Munich 2019 talk "Attacking Java RMI in 2019"☆101Updated 5 years ago
- cve-2020-0688☆164Updated 5 years ago
- Remote Command Execution Over Spark☆97Updated 7 years ago
- CVE-2019-11580 Atlassian Crowd and Crowd Data Center RCE☆106Updated 6 years ago
- This repo contains the files required to perform a CSRF attack using Flash and HTTP 307 redirections.☆77Updated 7 years ago
- Apache Tomcat + MongoDB Remote Code Execution☆114Updated 4 years ago
- Weblogic coherence.jar RCE☆177Updated 5 years ago
- FasterXML/jackson-databind 远程代码执行漏洞☆74Updated 5 years ago
- exploit Apache Flink Web Dashboard unauth rce on right way by python2 scripts☆93Updated 5 years ago
- JRE8u20_RCE_Gadget☆252Updated 9 years ago
- Sample Spring Boot App Demonstrating RCE via Exposed env Actuator and H2 Database☆107Updated 5 years ago
- Apache Solr RCE (ENABLE_REMOTE_JMX_OPTS="true")☆104Updated 5 years ago
- Web Server that serves a single file and keeps the connection open until user releases it.☆73Updated 11 years ago
- J2EEScan is a plugin for Burp Suite Proxy. The goal of this plugin is to improve the test coverage during web application penetration tes…☆75Updated 4 years ago
- Apache Solr RCE via Velocity template☆113Updated 5 years ago
- django 漏洞:CVE-2020-7471 Potential SQL injection via StringAgg(delimiter) 的漏洞环境和 POC☆104Updated 5 years ago
- java xxe defense demo☆49Updated 6 years ago
- Weblogic CVE-2020-14645 UniversalExtractor JNDI injection getDatabaseMetaData()☆80Updated 5 years ago
- Confluence 未授权 RCE (CVE-2019-3396) 漏洞☆144Updated 5 years ago
- ☆58Updated 5 years ago
- ☆107Updated 8 years ago