Alternatives and similar repositories for java-callgraph:

Users that are interested in java-callgraph are comparing it to the libraries listed below

• jimocode / CodeInspector
  基于Java ASM技术和GadgetInspector的原理，尝试实现一个自动Java代码审计工具。目前做到了可控参数分析和数据流跟踪分析
  ☆36Updated 3 years ago
• DummyHardy / DongTai
  DongTai is an interactive application security testing(IAST) product that supports the detection of OWASP WEB TOP 10 vulnerabilities, mul…
  ☆1Updated 3 years ago
• j5s / XVulnFinder
  Java静态代码安全审计工具，使用JavaParser项目做语法分析，计划支持常见的Web漏洞与组件漏洞
  ☆19Updated 3 years ago
• angelwhu / jvm-rasp
  基于JVM-Sandbox实现RASP安全监控防护
  ☆52Updated last year
• secfan / openrasp-compile-env
  OpenRASP Agent容器编译环境，助力二次开发。
  ☆12Updated 2 years ago
• threedr3am / log-agent
  利用agent hock指定的class，在jar运行周期内，用于跟踪被执行的方法，辅助做一些事情，比如挖洞啊
  ☆126Updated 4 years ago
• IndustriousSnail / javassist-learn
  Javassist官方文档中文翻译
  ☆78Updated 5 years ago
• dean2021 / java_security_book
  记录整理日常java安全分析代码
  ☆14Updated 6 years ago
• momosecurity / mosec-x-plugin-backend
  MOSEC-X-PLUGIN 后端API服务
  ☆24Updated 4 years ago
• XuefengWu / dependence_java
  analysis java dependence and store in neo4j
  ☆18Updated 6 years ago
• Maskhe / AxinSAST
  ☆10Updated 3 years ago
• mogwailabs / deserialization-filter-blacklists
  Native Java serialization filter blacklist for common gadgets
  ☆20Updated 5 years ago
• l3yx / springboot-shiro
  ☆15Updated last year
• Adrninistrator / java-behavior-control
  Monitor and prevent unexpected behavior of Java programs.
  ☆14Updated 3 years ago
• black-ant / case
  Java 大合集 , 包含多种框架的运用 , 微服务 , 压测 , 性能分析 , 文档 , 源码分析
  ☆89Updated last year
• ASTTeam / DAST
  《深入理解DAST动态应用程序安全测试》Dynamic Application Security Testing.
  ☆49Updated 2 years ago
• javasec / log4j-patch
  log4j-patch 修改字节码实现补丁防御
  ☆20Updated 3 years ago
• he1m4n6a / dcweb
  三方依赖库扫描系统
  ☆88Updated 3 years ago
• Ruil1n / helm-tiller-pwn
  ☆16Updated 4 years ago
• momosecurity / mosec-gradle-plugin
  用于检测gradle项目的第三方依赖组件是否存在安全漏洞。
  ☆24Updated 2 years ago
• threedr3am / FindClassInJars
  个人用于在自动化挖掘gadget时，方便查找gadget chains中class所在jar包，以助于便捷审计测试gadget有效性的那么一个小工具。
  ☆60Updated 4 years ago
• keven1z / DHook
  DHook是一个支持动态debug，动态修改java程序的web应用.
  ☆88Updated last month
• luelueking / jvm-sandbox-rasp
  一个基于jvm-sandbox高度定制化rasp
  ☆51Updated last year
• phith0n / bytecode-viewer
  git lfs based bytecode-viewer and follow dependencies. Based on https://github.com/Konloch/bytecode-viewer and https://github.com/ThexXTU…
  ☆16Updated 3 years ago
• Hutt0n0 / CodeqlFinder
  用go语言实现的批量执行ql脚本的小工具，实现只搜索sink点或者污点利用链寻找
  ☆8Updated last year
• HXSecurity / DongTai-Plugin-IDEA
  Dongtai-plugin-idea is an IDEA plug-in developed by DongTai team for Java Web application developers. This plug-in provides functions suc…
  ☆27Updated last year
• momosecurity / mosec-maven-plugin
  用于检测maven项目的第三方依赖组件是否存在安全漏洞。
  ☆103Updated 2 years ago