3stoneBrother / code-auditView external linksLinks
☆79Updated this week
Alternatives and similar repositories for code-audit
Users that are interested in code-audit are comparing it to the libraries listed below
Sorting:
- 在原版nps的基础上,增加了nps探测,以及对应的利用方式(如获取cookie,页面等),进行一些简单的二开。未经过大量测试,可能存在bug。☆21Aug 5, 2025Updated 6 months ago
- An SMB library in Go☆13Oct 27, 2022Updated 3 years ago
- Java Chains 插件编写 demo☆14Mar 5, 2025Updated 11 months ago
- Tool developed using csharp (.net 4.5) for compressing and encrypting files to shorten transfer times. Supports multi-file compression an…☆14Feb 15, 2024Updated 2 years ago
- ☆16Oct 30, 2022Updated 3 years ago
- ☆18Dec 25, 2024Updated last year
- ExpFuzz字典☆21May 27, 2024Updated last year
- 一款使用Yaml定义搜索规则来搜索Class的工具☆108Aug 2, 2023Updated 2 years ago
- 本工具不去主动的做端口扫描,通过聚合了三大资产测绘引擎接口语法,快速获取与目标有关的所有资产列表,并进行一键指纹识别(通用系统指纹、ICP归属等),筛出高价值及脆弱资产。☆31Mar 13, 2025Updated 11 months ago
- 一个基于jvm-sandbox高度定制化rasp☆58Sep 28, 2023Updated 2 years ago
- This lab guides you through setting up an environment to explore CVE-2019-2215, a critical Android kernel vulnerability in the binder sub…☆39Apr 24, 2025Updated 9 months ago
- Java通用漏洞修复安全组件☆60Jul 12, 2025Updated 7 months ago
- a tool help you write gamma poc☆110Mar 17, 2023Updated 2 years ago
- ☆65Sep 27, 2023Updated 2 years ago
- A Java Route Collection Tool☆102Aug 1, 2024Updated last year
- AI-native automated software risk analysis skill. LLM-driven, Code-First approach for comprehensive security risk assessment, threat mode…☆157Updated this week
- TL-NodeJsShell 是一个为安全专业人员和渗透测试人员设计的综合性 WebShell 管理平台。它提供了一个现代化的 Web 界面,用于管理基于 Node.js 的 Shell,具有内存马注入、命令执行、文件管理和代理支持等高级功能。☆73Dec 12, 2025Updated 2 months ago
- 方便自己搭建codeql环境和数据库的工具。☆64Aug 16, 2025Updated 6 months ago
- ☆30Sep 13, 2021Updated 4 years ago
- YASA-UAST is an intermediate representation structure for multi-language program analysis. The UAST-Parser parses code from different pro…☆66Jan 14, 2026Updated last month
- A portable C# utility for enumerating local and remote windows sessions☆54Jan 1, 2026Updated last month
- ☆72Oct 14, 2025Updated 4 months ago
- Kubernetes has its “ADCS” -- How To Backdoor a Kubernetes in silence and more persistent?☆40Nov 16, 2025Updated 3 months ago
- 由ABC_123编写的Web日志分析工具☆113Feb 4, 2026Updated last week
- 静态程序分析工具 主要生成方法的CFG和.java文件的AST☆132Jul 12, 2023Updated 2 years ago
- jeecgBoot漏洞利用工具☆47Feb 1, 2025Updated last year
- Java library used to upload files following the security steps described by OWASP☆10Jun 7, 2021Updated 4 years ago
- 基于Agent技术实现的Java内存马查杀、防护工具。☆94Jul 25, 2024Updated last year
- 一个基于Codeql规则的go靶场☆41Feb 19, 2025Updated 11 months ago
- 一款支持自定义的 Java 回显载荷生成工具|A customizable Java echo payload generation tool.☆460Jan 12, 2025Updated last year
- The open source coding agent. (Unleashed 、Removing LLM safety guardrails)☆184Updated this week
- 域内自动化信息搜集利用工具☆468Oct 24, 2023Updated 2 years ago
- Some ReadObject Sink With JDBC☆243May 8, 2024Updated last year
- ☆38Oct 26, 2021Updated 4 years ago
- ysoSimple:简易的Java漏洞利用工具,集成Java反序列化,Hessian反序列化,XStream反序列化,SnakeYaml反序列化,Shiro550,JSF反序列化,SSTI模板注入,JdbcAttackPayload,JNDIAttack,字节码生成。☆105Jan 20, 2026Updated 3 weeks ago
- JDBC Attack Tricks☆154Sep 3, 2023Updated 2 years ago
- FastjsonScan,支持版本识别、出网检测、AutoType检测、依赖检测,poc验证等功能☆13Jun 17, 2025Updated 7 months ago
- 基于Java ASM技术和GadgetInspector的原理,尝试实现一个自动Java代码审计工具。目前做到了可控参数分析和数据流跟踪分析☆39Oct 26, 2021Updated 4 years ago
- Active Directory share enumeration tool☆12Apr 28, 2025Updated 9 months ago