Skip to content

actuators.md

Latest commit

 

History

History
113 lines (95 loc) · 2.65 KB

actuators.md

File metadata and controls

113 lines (95 loc) · 2.65 KB

Spring Boot Actuator Endpoints and Info

When hunting for exposed Spring Boot Actuator endpoints, use this comprehensive wordlist with tools like ffuf, gobuster, and feroxbuster.

📌 Bruteforce Wordlist for Actuator Endpoints

# Default Actuator Base Path

actuator
actuator/

# Common Actuator Endpoints (Spring Boot 2.x/3.x)

actuator/health
actuator/info
actuator/env
actuator/metrics
actuator/loggers
actuator/threaddump
actuator/heapdump
actuator/logfile
actuator/configprops
actuator/beans
actuator/mappings
actuator/scheduledtasks
actuator/caches
actuator/conditions
actuator/auditevents
actuator/sessions
actuator/shutdown
actuator/startup
actuator/prometheus
actuator/httpexchanges
actuator/quartz
actuator/sbom

# Legacy Spring Boot 1.x Endpoints (No "/actuator" Prefix by Default)

health
info
env
metrics
loggers
trace
dump
heapdump
logfile
beans
autoconfig
mappings
configprops
flyway
liquibase
auditevents
shutdown

# Spring Cloud & Extended Actuator Endpoints

actuator/gateway
actuator/gateway/routes        # Spring Cloud Gateway - RCE possible in older versions (CVE-2022-22947)
actuator/refresh               # Spring Cloud Config Refresh - Reloads config (may expose secrets)
actuator/restart               # Spring Cloud Context Restart - Could be used for denial of service
actuator/jolokia               # JMX via Jolokia (Possible RCE with misconfigurations)
actuator/hawtio                # Hawtio JMX Management Console (Exploitable if misconfigured)
actuator/hawtio/index.html

# Miscellaneous Actuator Endpoints

actuator/httpexchanges         # HTTP Request Traces (Info Disclosure)
actuator/conditions            # Auto-Configuration Report (Can reveal app internals)
actuator/flyway                # Database Migrations via Flyway (Info Disclosure)
actuator/liquibase             # Database Migrations via Liquibase (Info Disclosure)
actuator/integrationgraph      # Spring Integration Graph (Information Leak)
actuator/heapdump              # Dumps JVM Heap Memory (Critical if exposed - may contain secrets)
actuator/loggers               # Adjust Logging Levels (Info Leak, may enable debug logs)
actuator/metrics               # Application Metrics (May expose internal system details)
actuator/auditevents           # Security Audit Logs (Can reveal login attempts & access control)

management
management/
management/health
management/info
management/env
management/metrics
management/configprops
management/beans
management/loggers

manage
manage/
manage/health
manage/info

admin
admin/
admin/health
admin/env

monitoring
monitoring/
monitoring/health
monitoring/info
monitoring/env

internal
internal/
internal/health
internal/info
internal/env