Alternatives and similar repositories for ISC2022Code

Users that are interested in ISC2022Code are comparing it to the libraries listed below

• xiaopan233 / Java_agent_without_file
  Java agent without file 无文件的Java agent
  ☆82Updated 3 years ago
• BeichenDream / JDR
  ☆143Updated 2 years ago
• flowerwind / AutoGenerateXalanPayload
  cve-2022-34169 延伸出的Jdk Xalan的payload自动生成工具，可根据不同的Jdk生成出其所对应的xslt文件
  ☆90Updated 2 years ago
• waderwu / nativeRasp
  nativeRasp that can hook native methods
  ☆24Updated 2 years ago
• luelueking / Bypass_JVM_Verifier
  Bypass JVM Class ByteCode Verifier , 对抗反编译器
  ☆113Updated 2 years ago
• 0xrumble / BytecodeScreen
  ☆50Updated 2 years ago
• KpLi0rn / LearnCompiler
  编译原理学习代码仓库
  ☆23Updated 3 years ago
• sf197 / MemoryShellHunter
  Java Agent memory horse scanner combined with Call Graph modus
  ☆64Updated 2 years ago
• Ape1ron / SpringAopInDeserializationDemo1
  在spring-aop中新发现的反序列化gadget-chain
  ☆51Updated 8 months ago
• c0ny1 / ascii-jar
  构造字节在ASCII范围内的jar
  ☆132Updated 3 years ago
• TonyD0g / JSPHunter
  基于污点分析和模拟栈帧技术的JSP Webshell检测
  ☆47Updated this week
• Rvn0xsy / DumperAnalyze
  通过JavaAgent与Javassist技术对JVM加载的类对象进行动态插桩，可以做一些破解、加密验证的绕过等操作
  ☆116Updated last year
• ffadd / JNDIKit
  JNDI/LDAP注入利用工具，对命令进行两种编码，支持多种绕过高版本JDK的方式（参考大佬代码造的轮子）
  ☆44Updated 3 years ago
• hosch3n / FastjsonVulns
  [fastjson 1.2.80] CVE-2022-25845 aspectj fileread & groovy remote classload
  ☆91Updated 3 years ago
• H3rmesk1t / Fastjson-Gadgets-Automatic-Scanner
  Automatically scan jar packages by using ast to find fastjson gadgets. In particular, this project is limited to mining Gadgets that may …
  ☆48Updated 3 years ago
• xyy-ws / NoAgent-memshell-scanner
  ☆108Updated 3 years ago
• turn1tup / JvmRaspBypass
  ☆14Updated 2 years ago
• 0linlin0 / Java
  java
  ☆54Updated 2 years ago
• lz2y / DubboPOC
  Apache Dubbo漏洞测试Demo及其POC
  ☆64Updated 2 years ago
• bitterzzZZ / CVE-2021-43297-POC
  CVE-2021-43297 POC，Apache Dubbo<= 2.7.13时可以实现RCE
  ☆38Updated 3 years ago
• ax1sX / SpringSecurity
  A list for Spring Security
  ☆125Updated last year
• su18 / rasp-vuln
  当死去的记忆突然开始攻击我，我终于想起了我还写过一款十分十分垃圾的 rasp 靶场。
  ☆78Updated 3 years ago
• jar-analyzer / jar-analyzer-v1-cli
  本项目可以把一个或多个Jar包构建成数据库，用户连接数据库后通过SQL语句任意搜索需要的内容，例如类和方法信息，方法调用关系等
  ☆75Updated last year
• bigBestWay / ice
  Use java instrument API without JAR file
  ☆46Updated 3 years ago
• SummerSec / LookupInterface
  CodeQL 寻找 JNDI利用 Lookup接口
  ☆163Updated 3 years ago
• tabby-sec / tabby-intellij-plugin
  A IntelliJ Plugin for Tabby to Find Vulnerabilities Easily
  ☆37Updated 10 months ago
• HackJava / Spring
  《Spring漏洞研究》
  ☆47Updated 3 years ago
• qi4L / Ysoserial-go
  A Go library for generating Java deserialization payloads.
  ☆155Updated last year
• SummerSec / SPATool
  静态程序分析工具 主要生成方法的CFG和.java文件的AST
  ☆132Updated 2 years ago
• passer-W / snakeyaml-memshell
  springboot跨线程注入内存马
  ☆122Updated 3 years ago