Java代码审计案例
☆24May 16, 2021Updated 4 years ago
Alternatives and similar repositories for POC-Test
Users that are interested in POC-Test are comparing it to the libraries listed below
Sorting:
- java代码审计学习笔记☆680Feb 24, 2020Updated 6 years ago
- 本项目�是记录自己在Java代码审计过程中遇到的一些优秀文章内容,以及涉及到的Java项目源文件,汇总起来方便初学者下载分析。☆31Jun 14, 2022Updated 3 years ago
- 代码审计总结☆85Sep 1, 2021Updated 4 years ago
- 就是一个练习RMI反序列化的最简单环境☆30Jan 8, 2022Updated 4 years ago
- 鹏 RocB - Java代码审计IDEA插件 SAST☆151Sep 16, 2021Updated 4 years ago
- 代码审计知识点整理-Java☆529Jun 15, 2020Updated 5 years ago
- Java安全,漏洞分析/挖掘/利用☆14Mar 14, 2023Updated 3 years ago
- SolarWinds Orion Platform ActionPluginBaseView 反序列化RCE☆47Oct 23, 2021Updated 4 years ago
- Log4j2 RCE Passive Scanner for BurpSuite☆31Dec 10, 2021Updated 4 years ago
- JavaAgent内存马☆17Jun 15, 2021Updated 4 years ago
- Getting started with java code auditing 代码审计入门的小项目☆930Feb 22, 2023Updated 3 years ago
- A burp extension, check Sturts2 RCE through passive scan.一款检测Struts2 RCE漏洞的burp被动扫描插件~☆15Dec 9, 2020Updated 5 years ago
- Hession-Deserialize-RCE 反序列化命令执行☆24Dec 27, 2019Updated 6 years ago
- Spring Cloud Function Spel命令执行漏洞☆39Mar 27, 2022Updated 3 years ago
- 基于Java ASM技术和GadgetInspector的原理,尝试实现一个自动Java代码审计工具。目前做到了可控参数分析和数据流跟踪分析☆39Oct 26, 2021Updated 4 years ago
- ☆38Oct 26, 2021Updated 4 years ago
- JAVA IAST Example☆49Dec 13, 2021Updated 4 years ago
- 一款探测fastjson漏洞的BurpSuite插件☆60Apr 1, 2022Updated 3 years ago
- java反序列化漏洞笔记☆24Apr 6, 2019Updated 6 years ago
- simpleIAST- 基于污点追踪的灰盒漏洞扫描工具。☆101Dec 23, 2025Updated 2 months ago
- Burp插件,转发处理☆14Jan 17, 2023Updated 3 years ago
- Burp suite 插件 实现参数溢出、垃圾数据、字典笛卡尔积☆29Feb 9, 2022Updated 4 years ago
- 静态分析及代码审计自动化相关资料收集☆298Jul 29, 2022Updated 3 years ago
- neo4j plugin of ByteCodeDL for the IntelliJ Platform. ByteCodeDL-Neo4j-IDEA-Plugin☆16Dec 28, 2023Updated 2 years ago
- woodpecker框架专用bcel库☆12Apr 30, 2021Updated 4 years ago
- python3 写的一些权限维持脚本☆38Feb 10, 2020Updated 6 years ago
- CodeQL Java 全网最全的中文学习资料☆799Mar 18, 2022Updated 4 years ago
- Log4j2 RCE Passive Scanner plugin for BurpSuite☆35Dec 16, 2021Updated 4 years ago
- Golang 解析Wappalyzer指纹库,暂不支持识别☆13Oct 10, 2020Updated 5 years ago
- 7bits安全团队-《Java安全-记一次实战使用memoryshell》代码样例☆19Nov 13, 2022Updated 3 years ago
- fastjson 80 远程代码执行漏洞复现☆199Sep 7, 2022Updated 3 years ago
- ☆1,055Jun 6, 2025Updated 9 months ago
- golang免杀捆绑器☆22Apr 7, 2022Updated 3 years ago
- 结合反射调用、动态编译、BCEL、defineClass0,ScriptEngine、Expression等技术的一款免杀JSP Webshell生成工具☆19Dec 16, 2021Updated 4 years ago
- A list for Spring Security☆128Jan 16, 2024Updated 2 years ago
- 一个java代码审计辅助工具☆29Nov 2, 2022Updated 3 years ago
- coremail address list export☆12Sep 9, 2021Updated 4 years ago
- fast scan for redtools☆880Mar 23, 2022Updated 3 years ago
- Spring4Shell (CVE-2022-22965)☆12Apr 7, 2022Updated 3 years ago