84 Open source projects that are alternatives of or similar to CVE-2020-36179

Distributed, workflow-driven integration environment

CVE-2019-16759 vbulletin 5.0.0 till 5.5.4 pre-auth rce

一个针对防御 log4j2 CVE-2021-44228 漏洞的 RASP 工具。 A Runtime Application Self-Protection module specifically designed for log4j2 RCE (CVE-2021-44228) defense.

RCE on Kibana versions before 5.6.15 and 6.6.0 in the Timelion visualizer

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

log4j rce test environment and poc

Penelope Shell Handler

PrintNightmare - Windows Print Spooler RCE/LPE Vulnerability (CVE-2021-34527, CVE-2021-1675) proof of concept exploits

DoS PoC's for SAP products

SSRF (Server Side Request Forgery) testing resources

A list of resources for those interested in getting started in bug bounties

Extract server and IP address information from Browser SSRF

Multithreaded Plugin based vulnerability scanner for mass detection of web-based applications vulnerabilities

Solutions and write-ups from security-based competitions also known as Capture The Flag competition

make http(s) request to prevent SSRF

本脚本旨在生成各类畸形URL链接，进行探测使用的payload，尝试绕过服务端ssrf限制。

CTF programs and writeups

Tests for SSRF by injecting a specified location into different headers. This is a Rust port of m4ll0k's tool.

Modified Nuclei Templates Version to FUZZ Host Header

国光的手把手带你用 SSRF 打穿内网靶场源码

A ruby gem for defending against Server Side Request Forgery (SSRF) attacks

A fast tool to mass scan for a vulnerability on Microsoft Exchange Server that allows an attacker bypassing the authentication and impersonating as the admin (CVE-2021-26855).

Nuclei Templates to reproduce Cracking the lens's Research

General data-binding package for Jackson (2.x): works on streaming API (core) implementation(s)