Cryin / JavaID
java source code static code analysis and danger function identify prog
☆525Updated 5 years ago
Related projects: ⓘ
- Weblogic环境搭建工具☆766Updated 4 years ago
- Fastjson vulnerability quickly exploits the framework(fastjson漏洞快速利用框架)☆1,255Updated last year
- 在渗透测试中快速检测常见中间件、组件的高危漏洞。☆733Updated 2 years ago
- ☆782Updated 2 years ago
- java内存对象搜索辅助工具☆777Updated last year
- Web Security Technology & Vulnerability Analysis Whitepapers☆534Updated 5 years ago
- ☆620Updated this week
- ☆724Updated this week
- OpenRASP 漏洞测试环境☆300Updated 10 months ago
- Java漏洞学习笔记 Deserialization Vulnerability☆915Updated last year
- spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧☆676Updated 3 years ago
- 从wooyun中提取的payload,以及burp插件☆840Updated 2 years ago
- PC客户端(C-S架构)渗透测试checklist / Client side(C-S) penetration checklist☆655Updated 3 years ago
- burp插件开发指南☆582Updated 3 years ago
- ☆404Updated 4 years ago
- java代码审计学习笔记☆597Updated 4 years ago
- IAST 灰盒扫描工具☆443Updated 2 years ago
- 一个利用ASM对字节码进行污点传播分析的静态代码审计应用(添加了大量代码注释,适合大家进行源码学习)。也加入了挖掘Fastjson反序列化gadget chains和SQLInject(JdbcTemplate、MyBatis、JPA、Hibernate、原生jdbc等)静…☆436Updated 2 years ago
- Burpsuite-Plugins-Usage☆497Updated 4 years ago
- Codeql学习笔记☆834Updated 2 years ago
- MySQL Fake Server use to help MySQL Client File Reading and JDBC Client Java Deserialize☆1,199Updated 2 years ago
- Static code auditing system☆461Updated 3 years ago
- 越权检测工具☆725Updated 2 years ago
- Collect JSP webshell of various implementation methods. 收集JSP Webshell的各种姿势☆1,349Updated 2 years ago
- a webshell resides in the memory of java web server☆657Updated 6 years ago
- Java反序列化漏洞利用工具V1.0 Java反序列化相关漏洞的检查工具,采用JDK 1.8+NetBeans8.2开发,软件运行必须安装JDK 1.8或者以上版本。 支持:weblogic xml反序列化漏洞 CVE-2017-10271/CNVD-C-2019…☆453Updated 3 years ago
- A helpful Java Deserialization exploit framework.☆1,155Updated 2 months ago
- Spring Boot Actuator未授权访问【XXE、RCE】单/多目标检测☆507Updated 4 years ago
- ☆921Updated this week
- Java RCE 回显测试代码☆992Updated 3 years ago