Java代码审计案例
☆24May 16, 2021Updated 4 years ago
Alternatives and similar repositories for POC-Test
Users that are interested in POC-Test are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- java代码审计学习笔记☆686Feb 24, 2020Updated 6 years ago
- 本项目是记录自己在Java代码审计过程中遇到的一些优秀文章内容,以及涉及到的Java项目源文件,汇总起来方便初学者下载分析。☆31Jun 14, 2022Updated 3 years ago
- 代码审计总结☆86Sep 1, 2021Updated 4 years ago
- 就是一个练习RMI反序列化的最简单环境☆30Jan 8, 2022Updated 4 years ago
- 鹏 RocB - Java代码审计IDEA插件 SAST☆150Sep 16, 2021Updated 4 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- 代码审计知识点整理-Java☆530Jun 15, 2020Updated 5 years ago
- Java安全,漏洞分析/挖掘/利用☆14Mar 14, 2023Updated 3 years ago
- SolarWinds Orion Platform ActionPluginBaseView 反序列化RCE☆47Oct 23, 2021Updated 4 years ago
- Log4j2 RCE Passive Scanner for BurpSuite☆31Dec 10, 2021Updated 4 years ago
- JavaAgent内存马☆17Jun 15, 2021Updated 4 years ago
- Getting started with java code auditing 代码审计入门的小项目☆930Feb 22, 2023Updated 3 years ago
- A burp extension, check Sturts2 RCE through passive scan.一款检测Struts2 RCE漏洞的burp被动扫描插件~☆15Dec 9, 2020Updated 5 years ago
- Hession-Deserialize-RCE 反序列化命令执行☆24Dec 27, 2019Updated 6 years ago
- Spring Cloud Function Spel命令执行漏洞☆39Mar 27, 2022Updated 4 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- 基于Java ASM技术和GadgetInspector的原理,尝试实现一个自动Java代码审计工具。目前做到了可控参数分析和数据流跟踪分析☆39Oct 26, 2021Updated 4 years ago
- ☆39Oct 26, 2021Updated 4 years ago
- JAVA IAST Example☆49Dec 13, 2021Updated 4 years ago
- 一款探测fastjson漏洞的BurpSuite插件☆60Apr 1, 2022Updated 4 years ago
- java反序列化漏洞笔记☆24Apr 6, 2019Updated 7 years ago
- Burp插件,转发处理☆14Jan 17, 2023Updated 3 years ago
- simpleIAST- 基于污点追踪的灰盒漏洞扫描工具。☆101Mar 24, 2026Updated last month
- Burp suite 插件 实现参数溢出、垃圾数据、字典笛卡尔积☆29Feb 9, 2022Updated 4 years ago
- 静态分析及代码审计自动化相关资料收集☆299Jul 29, 2022Updated 3 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- neo4j plugin of ByteCodeDL for the IntelliJ Platform. ByteCodeDL-Neo4j-IDEA-Plugin☆16Dec 28, 2023Updated 2 years ago
- woodpecker框架专用bcel库☆12Apr 30, 2021Updated 4 years ago
- python3 写的一些权限维持脚本☆38Feb 10, 2020Updated 6 years ago
- CodeQL Java 全网最全的中文学习资料☆800Mar 18, 2022Updated 4 years ago
- Log4j2 RCE Passive Scanner plugin for BurpSuite☆35Dec 16, 2021Updated 4 years ago
- Golang 解析Wappalyzer指纹库,暂不支持识别☆13Oct 10, 2020Updated 5 years ago
- 7bits安全团队-《Java安全-记一次实战使用memoryshell》代码样例☆19Nov 13, 2022Updated 3 years ago
- fastjson 80 远程代码执行漏洞复现☆199Sep 7, 2022Updated 3 years ago
- ☆1,065Jun 6, 2025Updated 10 months ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- golang免杀捆绑器☆22Apr 7, 2022Updated 4 years ago
- 结合反射调用、动态编译、BCEL、defineClass0,ScriptEngine、Expression等技术的一款免杀JSP Webshell生成工具☆19Dec 16, 2021Updated 4 years ago
- A list for Spring Security☆128Jan 16, 2024Updated 2 years ago
- 一个java代码审计辅助工具☆29Nov 2, 2022Updated 3 years ago
- coremail address list export☆12Sep 9, 2021Updated 4 years ago
- fast scan for redtools☆882Mar 23, 2022Updated 4 years ago
- Spring4Shell (CVE-2022-22965)☆12Apr 7, 2022Updated 4 years ago