Spring Boot (Java)

Resources

LogoSBSCAN: A Penetration Testing Tool Focused on the Spring FrameworkMedium
LogoSPRING BOOT PENTESTING PART 1- FUNDAMENTALSCertcube labs Cyber Security Research Blogs
LogoHow I Found and Bypassed a Spring Boot Actuator Information Disclosure BugMedium
LogoFuzzing ~98,000 Random Spring Boot Servers For AWS S3 KeysMedium
LogoSpring Actuators | Hacktricksblog.1nf1n1ty.team

Enumeration

  1. Directory traversal

LogoSecLists/Discovery/Web-Content/Programming-Language-Specific/Java-Spring-Boot.txt at master · danielmiessler/SecListsGitHub
$ gobuster dir -u <target> -w spring-boot.txt

  1. Additional endpoints

h2-console
...

Vulnerabilities

Certain versions of nginx + spring boot are vulnerable to an ACL list bypass attack:

LogoProxy / WAF Protections Bypass | Hacktricksblog.1nf1n1ty.team

PreviousFramework specificNextMethodology

Last updated