whwlsfb / Log4j2Scan
Log4j2 RCE Passive Scanner plugin for BurpSuite
☆800Updated last year
Alternatives and similar repositories for Log4j2Scan:
Users that are interested in Log4j2Scan are comparing it to the libraries listed below
- APIKit:Discovery, Scan and Audit APIs Toolkit All In One.☆2,067Updated last year
- Fiora:漏洞PoC框架Nuclei的图形版。快捷搜索PoC、一键运行Nuclei。即可作为独立程序运行,也可作为burp插件使用。☆1,210Updated 10 months ago
- Vulnerabilities of Goby supported with exploitation.☆721Updated last week
- JNDI注入测试工具(A tool which generates JNDI links can start several servers to exploit JNDI Injection vulnerability,like Jackson,Fastjson,etc)☆2,679Updated 2 years ago
- 一款基于BurpSuite的被动式shiro检测插件☆1,726Updated 2 years ago
- weblogic 漏洞扫描 工具。目前包含对以下漏洞的检测能力:CVE-2014-4210、CVE-2016-0638、CVE-2016-3510、CVE-2017-3248、CVE-2017-3506、CVE-2017-10271、CVE-2018-2628、CVE-201…☆2,038Updated last year
- Redis(<=5.0.5) RCE☆1,046Updated last year
- Remote Code Injection In Log4j☆464Updated 3 years ago
- OpenSource Poc && Vulnerable-Target Storage Box.☆681Updated 2 years ago
- Bypass firewall for traffic forwarding using webshell☆1,396Updated 3 years ago
- Burpsuite extension for log4j2rce☆28Updated 3 years ago
- Alibaba-Nacos-Unauthorized/ApacheDruid-RCE_CVE-2021-25646/MS-Exchange-SSRF-CVE-2021-26885/Oracle-WebLogic-CVE-2021-2109_RCE/RG-CNVD-2021-…☆1,078Updated last year
- A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅☆1,723Updated last week
- SpringCore0day from https://share.vx-underground.org/ & some additional links☆394Updated 3 years ago
- Subdomain enumeration tool, asynchronous dns packets, use pcap to scan 1600,000 subdomains in 1 second☆1,002Updated this week
- Neo-reGeorg is a project that seeks to aggressively refactor reGeorg☆3,045Updated 2 months ago
- Web漏洞扫描工具XRAY的GUI启动器☆1,283Updated last year
- 记录自己编写、修改的部分工具☆1,443Updated 3 years ago
- Log4j jndi injects the Payload generator☆486Updated 3 years ago
- Intranet penetration tools☆869Updated 3 years ago
- Asset discovery and identification tools 快速识别 Web 指纹信息,定位资产类型。辅助红队快速定位目标资产信息,辅助蓝队发现疑似脆弱点☆2,083Updated last year
- A helpful Java Deserialization exploit framework.☆1,210Updated 2 months ago
- Attack surface mapping☆1,449Updated last year
- FOFAX是一个基于fofa.info的API命令行查询工具☆772Updated 9 months ago
- 高危漏洞精准检测与深度利用框架☆1,401Updated 2 years ago
- 服务端配置错误情况下 用于伪造ip地址进行测试的Burp Suite插件☆1,549Updated 2 years ago
- Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack…☆3,003Updated 10 months ago
- Redis 4.x/5.x RCE☆954Updated 3 years ago
- Everything for pentest. | 用于渗透测试的 payload 和 bypass 字典.☆1,029Updated 2 years ago
- domain_hunter的高级版本,SRC挖洞、HW打点之必备!自动化资产收集;快速Title获取;外部工具联动;等等☆2,039Updated last month