Alternatives and similar repositories for Java

Users that are interested in Java are comparing it to the libraries listed below

• H3rmesk1t / Fastjson-Gadgets-Automatic-Scanner
  Automatically scan jar packages by using ast to find fastjson gadgets. In particular, this project is limited to mining Gadgets that may …
  ☆49Updated 3 years ago
• wuppp / releaseBehinderShell
  卸载冰蝎内存马
  ☆68Updated 4 years ago
• hosch3n / FastjsonVulns
  [fastjson 1.2.80] CVE-2022-25845 aspectj fileread & groovy remote classload
  ☆91Updated 3 years ago
• woodpecker-framework / woodpecker-requests
  woodpecker-framework框架http发包库,专门为漏洞检测与利用场景设计。
  ☆72Updated 2 months ago
• Rvn0xsy / SMTP-NC
  SMTP Netcat , test SMTP protocol
  ☆105Updated 4 years ago
• r00tuser111 / SerializationDumper-Shiro
  基于SerializationDumper的Shiro Cookie序列化数据解密小工具
  ☆54Updated 5 years ago
• SummerSec / BlogPapers
  <a href="sumsec.me"><img src="https://readme-typing-svg.demolab.com?font=Fira+Code&size=24&pause=1000&color=FDFDFD&background=13797800&ce…
  ☆54Updated this week
• SummerSec / LookupInterface
  CodeQL 寻找 JNDI利用 Lookup接口
  ☆166Updated 3 years ago
• knightswd / NoPacScan
  NoPacScan is a CVE-2021-42287/CVE-2021-42278 Scanner,it scan for more domain controllers than other script
  ☆88Updated 3 years ago
• zhutougg / LandrayDES
  蓝凌OA的前后台密码的加解密工具
  ☆95Updated 5 years ago
• tangxiaofeng7 / JavaLearning
  Learning JAVA for Security
  ☆34Updated 3 years ago
• KpLi0rn / ysoserial
  在原有yso基础上实现依赖分离，内存马注入等功能。A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆68Updated 4 years ago
• passer-W / snakeyaml-memshell
  springboot跨线程注入内存马
  ☆123Updated 3 years ago
• turn1tup / JvmRaspBypass
  ☆17Updated 3 years ago
• lz2y / DubboPOC
  Apache Dubbo漏洞测试Demo及其POC
  ☆65Updated 2 years ago
• 0xrumble / BytecodeScreen
  ☆50Updated 3 years ago
• yyhuni / shiroMemshell
  利用shiro反序列化注入冰蝎内存马
  ☆37Updated 4 years ago
• bitterzzZZ / CVE-2021-43297-POC
  CVE-2021-43297 POC，Apache Dubbo<= 2.7.13时可以实现RCE
  ☆38Updated 3 years ago
• hhxy / e-message_exp
  e-mesaage <=4.15 后台jar包上传exp
  ☆47Updated 6 years ago
• 8ypass / weblogicExploit
  weblogic历史漏洞利用工具
  ☆90Updated 3 years ago
• Firebasky / GoRmi
  该项目是通过go语言实现防止rmi利用被反置的问题。
  ☆44Updated 4 years ago
• sf197 / MemoryShellHunter
  Java Agent memory horse scanner combined with Call Graph modus
  ☆65Updated 3 years ago
• xyy-ws / NoAgent-memshell-scanner
  ☆108Updated 3 years ago
• woodpecker-appstore / java-memshell-generator
  Java 内存马生成插件
  ☆54Updated 2 years ago
• welk1n / FastjsonPocs
  一些结合第三方组件的Fastjson POC，在1.2.48以后版本中陆续被添加至黑名单。
  ☆56Updated 6 years ago
• JohnnyZhouX / Intranet-Hacking
  内网渗透相关总结
  ☆37Updated 4 years ago
• mstxq17 / cve-2020-1472
  cve-2020-1472 复现利用及其exp
  ☆112Updated 5 years ago
• haby0 / sec-note
  记录各语言、框架中危险的sink，个人代码审计、漏洞研究使用。
  ☆117Updated 4 years ago
• TonyD0g / JSPHunter
  基于污点分析和模拟栈帧技术的JSP Webshell检测
  ☆48Updated 3 months ago
• epony4c / urldict
  ☆30Updated 2 years ago