零基础Java安全学习笔记
☆60Mar 31, 2026Updated last week
Alternatives and similar repositories for JavaSec
Users that are interested in JavaSec are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Java代码审计学习笔记☆13Dec 20, 2024Updated last year
- 整理容器逃逸相关的漏洞和exploits.☆15Apr 17, 2024Updated last year
- 用于快速启动tabby 分析漏洞或者gadget的环境☆94Jul 14, 2025Updated 8 months ago
- 一个简单的集成化渗透测试工具☆19Jun 7, 2022Updated 3 years ago
- Cobalt Strike Beacon Object File (BOF) that obtain SYSTEM privilege with SeImpersonate privilege by passing a malicious IUnknwon object t…☆13Feb 4, 2024Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
- 通过生成不同hash的ico并写入程序中,实现批量bypass360QVM☆260Aug 10, 2023Updated 2 years ago
- 基于W01fh4cker大佬的LearnJavaMemshellFromZero从零掌握java内存马的复现重组版本。☆93Jul 7, 2025Updated 9 months ago
- Get sql server connection configuration information☆28Aug 26, 2024Updated last year
- 高版本Fastjson在Java原生反序列化中的利用演示☆26Jan 12, 2025Updated last year
- 在spring-aop中新发现的反序列化gadget-chain☆52Jan 12, 2025Updated last year
- 对指定目录下进行敏感信息检索☆15Feb 14, 2025Updated last year
- CVE-2022-22947注入哥斯拉内存马☆28Jun 21, 2023Updated 2 years ago
- command execute without 445 port☆57Feb 25, 2022Updated 4 years ago
- 一款Java内存马生成、测试工具,搭配@ax1sX的MemShell食用。☆263Feb 15, 2026Updated last month
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- c3p0 new gadget☆28Apr 1, 2025Updated last year
- 小程序登陆包加解密☆45Apr 23, 2021Updated 4 years ago
- 常用功能的DLL插件☆86Sep 24, 2025Updated 6 months ago
- 一款微信小程序源码包信息收集工具,根据已有项目改编☆24Feb 11, 2025Updated last year
- 关于内存马的学习研究支持新手从0到1,从内存马原理,内存马植入 内存马检测 到内存马防御与内存马应急以及内存马查杀全系列java内存马/php/.net/c++/python 喜欢可以点个star 后续持续更新☆143Apr 24, 2024Updated last year
- ☆29Feb 2, 2024Updated 2 years ago
- 主要用于隐藏进程真实路径,进程带windows真签名☆119Oct 15, 2024Updated last year
- xxl-job内存马☆229Jan 26, 2025Updated last year
- Fastjson + MySQL 条件下不出网利用测试环境☆50Dec 6, 2025Updated 4 months ago
- Wordpress hosting with auto-scaling on Cloudways • AdFully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
- 记录一些代码审计过的源码☆183Feb 26, 2025Updated last year
- ☆15Aug 3, 2022Updated 3 years ago
- 一款支持检测host头攻击的burp suite插件☆53Feb 21, 2024Updated 2 years ago
- CVE-2024-21006 exp☆17Jul 29, 2024Updated last year
- 集权利用工具☆167Feb 28, 2025Updated last year
- 80+ Gadgets(30 More than ysoserial). JNDI-Injection-Exploit-Plus is a tool for generating workable JNDI links and provide background serv…☆873Jun 24, 2024Updated last year
- 集成了截图 键盘记录 剪贴版功能,用于网络限制场景下的信息搜集☆89May 18, 2024Updated last year
- 基于多种策略, 对已有 JAR 包中的全限定类名进行变换, 无限生成高度相似的虚假类名☆18Jul 30, 2025Updated 8 months ago
- GeoServer(CVE-2024-36401/CVE-2024-36404)漏洞利用工具☆122Jan 17, 2025Updated last year
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
- 个人学习Java安全的笔记☆133May 5, 2023Updated 2 years ago
- IDEA代码审计辅助插件(深信服深蓝实验室天威战队强力驱动)☆584Mar 10, 2025Updated last year
- 一键修改exe、dll的编译时间、创建时间、修改时间和访问时间☆198Apr 16, 2023Updated 2 years ago
- 这个工具实现了您提到的所有Windows权限维持技术,包括IFEO镜像劫持、启动项后门、WMI无文件后门、进程注入、DLL劫持、影子用户等。代码结构清晰,文档完整,适合用于安全研究和教育目的。☆42Aug 19, 2025Updated 7 months ago
- FastjsonScan4Burp 一款基于burp被动扫描的fastjson漏洞探测插件,可针对数据包中存在json的参数或请求体进行payload测试。旨在帮助安全人员更加便捷的发现、探测、深入利用fastjson漏洞,目前已实现fastjson探测、版本、依赖探测、出…☆159Mar 13, 2025Updated last year
- 一个简单的代理浏览器插件☆30Feb 9, 2026Updated 2 months ago
- ASP.net ViewState密钥被动扫描爆破BurpSuite插件☆221Nov 14, 2025Updated 4 months ago