Alternatives and similar repositories for java-callgraph

Users that are interested in java-callgraph are comparing it to the libraries listed below

• jimocode / CodeInspector
  基于Java ASM技术和GadgetInspector的原理，尝试实现一个自动Java代码审计工具。目前做到了可控参数分析和数据流跟踪分析
  ☆38Updated 4 years ago
• black-ant / case
  Java 大合集 , 包含多种框架的运用 , 微服务 , 压测 , 性能分析 , 文档 , 源码分析
  ☆90Updated 2 years ago
• IndustriousSnail / javassist-learn
  Javassist官方文档中文翻译
  ☆82Updated 6 years ago
• momosecurity / mosec-gradle-plugin
  用于检测gradle项目的第三方依赖组件是否存在安全漏洞。
  ☆25Updated 3 years ago
• mogwailabs / deserialization-filter-blacklists
  Native Java serialization filter blacklist for common gadgets
  ☆20Updated 6 years ago
• dean2021 / java_security_book
  记录整理日常java安全分析代码
  ☆14Updated 6 years ago
• threedr3am / log-agent
  利用agent hock指定的class，在jar运行周期内，用于跟踪被执行的方法，辅助做一些事情，比如挖洞啊
  ☆126Updated 5 years ago
• momosecurity / mosec-maven-plugin
  用于检测maven项目的第三方依赖组件是否存在安全漏洞。
  ☆103Updated 3 years ago
• one-iast / practice
  手把手教你写IAST系列
  ☆24Updated last year
• keven1z / DHook
  DHook是一个支持动态debug，动态修改java程序的web应用.
  ☆86Updated 11 months ago
• angelwhu / jvm-rasp
  基于JVM-Sandbox实现RASP安全监控防护
  ☆53Updated 2 years ago
• j5s / XVulnFinder
  Java静态代码安全审计工具，使用JavaParser项目做语法分析，计划支持常见的Web漏洞与组件漏洞
  ☆21Updated 4 years ago
• HXSecurity / vulhub-compose
  vulhub-compose是一款屏蔽docker-compose的命令行工具，目的是降低火线平台社区用户使用vulhub靶场的难度，减少学习docker-compose的时间成本；同时，支持直接安装洞态IAST（原灵芝IAST）到vulhub靶场，用于漏洞复现、漏洞挖掘。
  ☆46Updated 4 years ago
• XuefengWu / dependence_java
  analysis java dependence and store in neo4j
  ☆18Updated 7 years ago
• zilong3033 / XPOC
  java UI 插件化漏洞扫描工具
  ☆18Updated 5 years ago
• javasec / log4j-patch
  log4j-patch 修改字节码实现补丁防御
  ☆20Updated 3 years ago
• phith0n / bytecode-viewer
  git lfs based bytecode-viewer and follow dependencies. Based on https://github.com/Konloch/bytecode-viewer and https://github.com/ThexXTU…
  ☆16Updated 4 years ago
• cor0ps / codeql
  收集规则
  ☆30Updated 2 years ago
• ring04h / iproxy
  HTTP/HTTPS proxy server by golang [high performance version]
  ☆54Updated 5 years ago
• VictorJiangXin / JAVA-Pointer-Analyse
  JAVA指针分析
  ☆13Updated 6 years ago
• HXSecurity / DongTai-Plugin-IDEA
  Dongtai-plugin-idea is an IDEA plug-in developed by DongTai team for Java Web application developers. This plug-in provides functions suc…
  ☆32Updated 2 years ago
• 5z1punch / AutoTypeDiscovery
  fastjson auto type derivation search
  ☆20Updated 4 years ago
• ASTTeam / DAST
  《深入理解DAST动态应用程序安全测试》Dynamic Application Security Testing.
  ☆53Updated 3 years ago
• l3yx / springboot-shiro
  ☆16Updated 2 years ago
• shadowsock5 / jackson-databind-POC
  ☆19Updated 5 years ago
• baidu-security / openrasp-v8
  Google V8 with OpenRASP builtins
  ☆57Updated 4 years ago
• secfan / openrasp-compile-env
  OpenRASP Agent容器编译环境，助力二次开发。
  ☆12Updated 3 years ago
• Wfzsec / ysoserial-poc
  记录调试分析ysoserial系列的学习过程，主要包含手动构造的一些poc，便于加深对漏洞和工具的理解
  ☆30Updated 5 years ago
• zifeihan / friday
  java runtime decompiler (java实时反编译工具)
  ☆245Updated last year
• XmirrorSecurity / OpenSCA-intellij-plugin
  ☆37Updated 9 months ago