Alternatives and similar repositories for spring4shell-detect

Users that are interested in spring4shell-detect are comparing it to the libraries listed below

• apiiro / combobulator
  Dependency Combobulator
  ☆93Updated last year
• Contrast-Security-OSS / vulnerable-spring-boot-application
  ☆14Updated last year
• jschauma / check-springshell
  try to determine if a host is vulnerable to SpringShell CVE‐2022‐22965 and CVE‐2022‐22963
  ☆23Updated 3 years ago
• google / security-testbeds
  ☆40Updated 3 months ago
• alex91ar / randomstringutils
  Cracker for Apache.lang.commons RandomStringUtils(). Code for "The Java Soothsayer" talk at EkoParty 2017 by Alejo Popovici.
  ☆32Updated 7 years ago
• raesene / CVE-2022-23648-POC
  POC for CVE-2022-23648
  ☆36Updated 3 years ago
• Lucky0x0D / NetScalerEPABypass
  A quick and dirty way to bypass encrypted EPA to connect to a NetScaler Gateway
  ☆20Updated 5 years ago
• pentagridsec / archive_pwn
  A Python-based tool to create zip, tar and cpio archives to exploit common archive library issues and developer mistakes
  ☆43Updated last year
• xvnpw / k8s-CVE-2021-43557-poc
  PoC for CVE-2021-43557
  ☆21Updated 3 years ago
• PortSwigger / postman-integration
  Postman Integration is an extension for burp to generate Postman collection fomat json file.
  ☆20Updated 2 years ago
• jackj07 / Response-Pattern-Matcher
  Adds extensibility to Burp by using a list of payloads to pattern match on HTTP responses highlighting interesting and potentially vulner…
  ☆15Updated last year
• Contrast-Security-OSS / safelog4j
  Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning …
  ☆41Updated 11 months ago
• mlr0p / CVE-2021-33564
  Argument Injection in Dragonfly Ruby Gem
  ☆16Updated 4 years ago
• assetnote / kitebuilder
  ☆24Updated last year
• JLLeitschuh / lgtm_hack_scripts
  Collection of python helper API's for interacting with LGTM.com in ways the official API doesn't support.
  ☆24Updated 3 years ago
• whitesource / log4j-detect-distribution
  ☆138Updated 3 years ago
• vmnguyen / semgrep-rules
  My custom semgrep rules
  ☆21Updated 4 years ago
• Threagile / run-threagile-action
  GitHub action to run Threagile, the agile threat modeling toolkit, on a repo's threagile.yaml file
  ☆13Updated last year
• PortSwigger / elastic-burp
  The Web Audit Search Engine - Index and Search HTTP Requests and Responses in Web Application Audits with ElasticSearch
  ☆23Updated 6 years ago
• ghostsecurity / waf-btk
  WAF bypass PoC
  ☆48Updated last year
• PortSwigger / java-deserialization-scanner
  All-in-one plugin for Burp Suite for the detection and the exploitation of Java deserialization vulnerabilities
  ☆27Updated 3 years ago
• AdnaneKhan / ActionsTOCTOU
  Example repository for GitHub Actions Time of Check to Time of Use (TOCTOU vulnerabilities)
  ☆23Updated last month
• advanced-security / custom-codeql-bundle
  An example repository that demonstrates how the build custom CodeQL bundles that include query customizations through the `Customizations…
  ☆25Updated 2 years ago
• zapbot / zap-mgmt-scripts
  ZAP Management Scripts
  ☆23Updated 2 weeks ago
• omerlh / zap-operator
  ☆21Updated 5 years ago
• praetorian-inc / konstellation
  Konstellation is a configuration-driven CLI tool to enumerate cloud resources and store the data into Neo4j.
  ☆21Updated last year
• silentsignal / burp-uuid
  UUID issues for Burp Suite
  ☆51Updated 3 years ago
• ropnop / pentest_charts
  Some helpful Helm Charts for pentesters
  ☆39Updated 6 years ago
• nccgroup / abstractshimmer
  Proof of concept for CVE-2020-15257 in containerd.
  ☆17Updated 4 years ago
• knqyf263 / CVE-2020-8617
  PoC for CVE-2020-8617 (BIND)
  ☆45Updated 5 years ago