78778443 / swallow
代码审计自动化系统,底层架构为蜻蜓编排系统,墨菲SCA,fortify,SemGrep,hema
☆28Updated 2 months ago
Alternatives and similar repositories for swallow:
Users that are interested in swallow are comparing it to the libraries listed below
- Apache Dubbo漏洞测试Demo及其POC☆61Updated 2 years ago
- 一个高价值漏洞采集与推送服务 | A valueable vulnerability collection and push service☆31Updated 7 months ago
- A IntelliJ Plugin for Tabby to Find Vulnerabilities Easily☆34Updated 6 months ago
- 一个简单的批量反编译jar包的小脚本☆35Updated 3 years ago
- Kunlun-M 的GUI程序☆51Updated 2 years ago
- 当死去的记忆突然开始攻击我,我终于想起了我还写过一款十分十分垃圾的 rasp 靶场。☆77Updated 2 years ago
- <a href="sumsec.me"><img src="https://readme-typing-svg.demolab.com?font=Fira+Code&size=24&pause=1000&color=FDFDFD&background=13797800&ce…☆53Updated this week
- A vul-finder for loading CPG and automated finding vul-call-chains☆52Updated 7 months ago
- Lessons for syntaxflow zero to hero☆50Updated 7 months ago
- CodeQL 寻找 JNDI利用 Lookup接口☆163Updated 3 years ago
- woodpecker-framework框架http发包库,专门为漏洞检测与利用场景设计。☆67Updated 2 years ago
- 基于污点分析和模拟栈帧技术的JSP Webshell检测☆45Updated 4 months ago
- Spel-research☆26Updated 2 years ago
- 《FanZhi-攻击与反制的艺术》☆64Updated last year
- [fastjson 1.2.80] CVE-2022-25845 aspectj fileread & groovy remote classload☆90Updated 2 years ago
- API Security DAST & Oprations☆16Updated last year
- 《Spring漏洞研究》☆46Updated 3 years ago
- Scanner platform based on Kubernetes and Argo-Workflow 基于k8s和argo工作流的扫描器☆108Updated last year
- PassiveScan-被动扫描之巅☆69Updated last year
- ☆50Updated 2 years ago
- 之前方便自己研究RASP原理和绕过时顺手写的,用于快速启动和重置RASP环境☆66Updated 6 months ago
- GO语言漏洞靶场 GIN框架 支持docker一键启动☆76Updated 2 years ago
- Java 内存马生成插件☆50Updated last year
- java☆54Updated 2 years ago
- CVE-2021-43297 POC,Apache Dubbo<= 2.7.13时可以实现RCE☆38Updated 3 years ago
- 一个java代码审计辅助工具☆28Updated 2 years ago
- ☆35Updated 3 years ago
- Apache Dubbo Hessian2 CVE-2021-43297 demo☆46Updated 3 years ago
- 是我阅读各种源码写的笔记☆72Updated 2 years ago
- A Go library for generating Java deserialization payloads.☆155Updated 8 months ago