Erosion2020/JavaSec external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

Erosion2020/JavaSec

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Erosion2020/JavaSec)

Close

Erosion2020 / JavaSecView on GitHubMore

• External links
• Readme badge

零基础Java安全学习笔记

☆57Dec 6, 2025Updated 3 months ago

Alternatives and similar repositories for JavaSec

Users that are interested in JavaSec are comparing it to the libraries listed below

• GHSmaster / JavaSecurity

  View on GitHub
  Java代码审计学习笔记
  ☆13Dec 20, 2024Updated last year
• LouisLiuNova / container-escape-exploits

  View on GitHub
  整理容器逃逸相关的漏洞和exploits.
  ☆15Apr 17, 2024Updated last year
• yulate / tabby-pipeline

  View on GitHub
  用于快速启动tabby 分析漏洞或者gadget的环境
  ☆94Jul 14, 2025Updated 8 months ago
• Erosion2020 / SpaceCore

  View on GitHub
  一个简单的集成化渗透测试工具
  ☆19Jun 7, 2022Updated 3 years ago
• 0x3rhy / BOF-DCOMPotato-PrintNotify

  View on GitHub
  Cobalt Strike Beacon Object File (BOF) that obtain SYSTEM privilege with SeImpersonate privilege by passing a malicious IUnknwon object t…
  ☆13Feb 4, 2024Updated 2 years ago
• Pizz33 / 360QVM_bypass

  View on GitHub
  通过生成不同hash的ico并写入程序中，实现批量bypass360QVM
  ☆259Aug 10, 2023Updated 2 years ago
• d0ctorsec / LearnJavaMemshellFromZero-Recurrence

  View on GitHub
  基于W01fh4cker大佬的LearnJavaMemshellFromZero从零掌握java内存马的复现重组版本。
  ☆92Jul 7, 2025Updated 8 months ago
• aleenzz / InjectSQLServer

  View on GitHub
  Get sql server connection configuration information
  ☆28Aug 26, 2024Updated last year
• Ape1ron / FastjsonInDeserializationDemo1

  View on GitHub
  高版本Fastjson在Java原生反序列化中的利用演示
  ☆26Jan 12, 2025Updated last year
• Ape1ron / SpringAopInDeserializationDemo1

  View on GitHub
  在spring-aop中新发现的反序列化gadget-chain
  ☆52Jan 12, 2025Updated last year
• z1sec / sensitiveInfScan

  View on GitHub
  对指定目录下进行敏感信息检索
  ☆15Feb 14, 2025Updated last year
• Zh0um1 / CVE-2022-22947

  View on GitHub
  CVE-2022-22947注入哥斯拉内存马
  ☆28Jun 21, 2023Updated 2 years ago
• JDArmy / NO445-lateral-movement

  View on GitHub
  command execute without 445 port
  ☆57Feb 25, 2022Updated 4 years ago
• suizhibo / MemShellGene

  View on GitHub
  一款Java内存马生成、测试工具，搭配@ax1sX的MemShell食用。
  ☆262Feb 15, 2026Updated last month
• hmoytx / bp_miniprogram_decrypt

  View on GitHub
  小程序登陆包加解密
  ☆45Apr 23, 2021Updated 4 years ago
• unam4 / c3p0explore

  View on GitHub
  c3p0 new gadget
  ☆28Apr 1, 2025Updated 11 months ago
• youcannotseemeagain / ele

  View on GitHub
  常用功能的DLL插件
  ☆86Sep 24, 2025Updated 5 months ago
• GrassWorkshop / wxapkg_infosearch

  View on GitHub
  一款微信小程序源码包信息收集工具，根据已有项目改编
  ☆24Feb 11, 2025Updated last year
• Xsw6 / JavaSec

  View on GitHub
  ☆29Feb 2, 2024Updated 2 years ago
• qigpig / Ghosting-BOF

  View on GitHub
  主要用于隐藏进程真实路径，进程带windows真签名
  ☆119Oct 15, 2024Updated last year
• RuoJi6 / xxl-job-FLM

  View on GitHub
  xxl-job内存马
  ☆227Jan 26, 2025Updated last year
• Fushuling / fastjson_mysql

  View on GitHub
  Fastjson + MySQL 条件下不出网利用测试环境
  ☆50Dec 6, 2025Updated 3 months ago
• for-A1kaid / CodeAudit

  View on GitHub
  记录一些代码审计过的源码
  ☆182Feb 26, 2025Updated last year
• tovd-go / java-memshell-scan

  View on GitHub
  ☆15Aug 3, 2022Updated 3 years ago
• hy0jer / HostScan

  View on GitHub
  一款支持检测host头攻击的burp suite插件
  ☆53Feb 21, 2024Updated 2 years ago
• lightr3d / CVE-2024-21006_jar

  View on GitHub
  CVE-2024-21006 exp
  ☆17Jul 29, 2024Updated last year
• myzxcg / NoNameExploit

  View on GitHub
  集权利用工具
  ☆165Feb 28, 2025Updated last year
• cckuailong / JNDI-Injection-Exploit-Plus

  View on GitHub
  80+ Gadgets(30 More than ysoserial). JNDI-Injection-Exploit-Plus is a tool for generating workable JNDI links and provide background serv…
  ☆870Jun 24, 2024Updated last year
• 24-2021 / Proxy24

  View on GitHub
  一个简单的代理浏览器插件
  ☆20Feb 9, 2026Updated last month
• Pizz33 / GoThief

  View on GitHub
  集成了截图 键盘记录 剪贴版功能，用于网络限制场景下的信息搜集
  ☆89May 18, 2024Updated last year
• X1r0z / ClassNameObfuscator

  View on GitHub
  基于多种策略, 对已有 JAR 包中的全限定类名进行变换, 无限生成高度相似的虚假类名
  ☆18Jul 30, 2025Updated 7 months ago
• whitebear-ch / GeoServerExploit

  View on GitHub
  GeoServer（CVE-2024-36401/CVE-2024-36404）漏洞利用工具
  ☆121Jan 17, 2025Updated last year
• dota-st / JavaSec

  View on GitHub
  个人学习Java安全的笔记
  ☆130May 5, 2023Updated 2 years ago
• KimJun1010 / inspector

  View on GitHub
  IDEA代码审计辅助插件（深信服深蓝实验室天威战队强力驱动）
  ☆583Mar 10, 2025Updated last year
• Maikefee / Windows-Persistence-Tool

  View on GitHub
  这个工具实现了您提到的所有Windows权限维持技术，包括IFEO镜像劫持、启动项后门、WMI无文件后门、进程注入、DLL劫持、影子用户等。代码结构清晰，文档完整，适合用于安全研究和教育目的。
  ☆42Aug 19, 2025Updated 7 months ago
• sorabug / ChangeTimestamp

  View on GitHub
  一键修改exe、dll的编译时间、创建时间、修改时间和访问时间
  ☆198Apr 16, 2023Updated 2 years ago
• Niiiiko / FastjsonScan4Burp

  View on GitHub
  FastjsonScan4Burp 一款基于burp被动扫描的fastjson漏洞探测插件，可针对数据包中存在json的参数或请求体进行payload测试。旨在帮助安全人员更加便捷的发现、探测、深入利用fastjson漏洞，目前已实现fastjson探测、版本、依赖探测、出…
  ☆157Mar 13, 2025Updated last year
• whwlsfb / ViewState-Cracker

  View on GitHub
  ASP.net ViewState密钥被动扫描爆破BurpSuite插件
  ☆220Nov 14, 2025Updated 4 months ago
• Msup5 / JeecgGo

  View on GitHub
  JeecgBoot Go版本综合漏洞检测工具
  ☆81Feb 24, 2026Updated 3 weeks ago