零基础Java安全学习笔记
☆56Dec 6, 2025Updated 2 months ago
Alternatives and similar repositories for JavaSec
Users that are interested in JavaSec are comparing it to the libraries listed below
Sorting:
- 用于快速启动tabby 分析漏洞或者gadget的环境☆94Jul 14, 2025Updated 7 months ago
- Cobalt Strike Beacon Object File (BOF) that obtain SYSTEM privilege with SeImpersonate privilege by passing a malicious IUnknwon object t…☆13Feb 4, 2024Updated 2 years ago
- 整理容器逃逸相关的漏洞和exploits.☆15Apr 17, 2024Updated last year
- Get sql server connection configuration information☆28Aug 26, 2024Updated last year
- CVE-2022-22947注入哥斯拉内存马☆28Jun 21, 2023Updated 2 years ago
- 通过生成不同hash的ico并写入程序中,实现批量bypass360QVM☆259Aug 10, 2023Updated 2 years ago
- 在spring-aop中新发现的反序列化gadget-chain☆52Jan 12, 2025Updated last year
- ☆15Aug 3, 2022Updated 3 years ago
- c3p0 new gadget☆28Apr 1, 2025Updated 10 months ago
- ☆29Feb 2, 2024Updated 2 years ago
- Java代码审计学习笔记☆13Dec 20, 2024Updated last year
- 基于W01fh4cker大佬的LearnJavaMemshellFromZero从零掌握java内存马的复现重组版本。☆92Jul 7, 2025Updated 7 months ago
- 主要用于隐藏进程真实路径,进程带windows真签名☆119Oct 15, 2024Updated last year
- 常用功能的DLL插件☆86Sep 24, 2025Updated 5 months ago
- 一款微信小程序源码包信息收集工具,根据已有项目改编☆24Feb 11, 2025Updated last year
- 高版本Fastjson在Java原生反序列化中的利用演示☆26Jan 12, 2025Updated last year
- JeecgBoot Go版本综合漏洞检测工具☆79Updated this week
- 一款Java内存马生成、测试工具,搭配@ax1sX的MemShell食用。☆261Feb 15, 2026Updated last week
- 集成了截图 键盘记录 剪贴版功能,用于网络限制场景下的信息搜集☆90May 18, 2024Updated last year
- a DIY tools to decrypto webshell Traffic☆25Feb 26, 2024Updated 2 years ago
- Fastjson + MySQL 条件下不出网利用测试环境☆49Dec 6, 2025Updated 2 months ago
- CVE-2024-21006 exp☆18Jul 29, 2024Updated last year
- 一个简单的代理浏览器插件☆20Feb 9, 2026Updated 2 weeks ago
- GeoServer(CVE-2024-36401/CVE-2024-36404)漏洞利用工具☆120Jan 17, 2025Updated last year
- 在Java安全学习过程中的笔记和代码☆78Feb 18, 2026Updated last week
- ☆65Sep 27, 2023Updated 2 years ago
- 记录一些代码审计过的源码☆182Feb 26, 2025Updated last year
- 一个基于 Vineflower 引擎的多线程 Java 批量反编译工具,支持快速处理大量的 class 文件和 JAR 文件。☆58Apr 28, 2025Updated 10 months ago
- 优化后的URLFinder,可以通过自定义的正则表达式,对页面中的各类敏感信息提取☆148Jan 20, 2025Updated last year
- CVE-2024-36401 图形化利用工具,支持各个JDK版本利用以及回显、内存马实现☆37Jul 16, 2025Updated 7 months ago
- Extract entire function source code based on giving line number using Javaparser☆21Jul 15, 2025Updated 7 months ago
- Tao(道)一款用于java语言函数调用关系生成的工具,致力于提高java代码审计效率。☆11Jul 2, 2024Updated last year
- fscan结果优化,更新DC域筛选☆10Nov 21, 2023Updated 2 years ago
- This is a VxLAN PoC code for Talks: From Spoofing to Tunneling: New Red Team's Networking Techniques for Initial Access and Evasion☆28Jul 21, 2025Updated 7 months ago
- 自动化检测 Swagger API 接口未授权访问漏洞工具☆60Mar 10, 2025Updated 11 months ago
- 集权利用工具☆164Feb 28, 2025Updated 11 months ago
- 之前方便自己研究RASP原理和绕过时顺手写的,用于快速启动和重置RASP环境☆71Oct 13, 2024Updated last year
- JndiBypass漏洞利用,可动态生成类,防止类注入冲突☆29Aug 16, 2023Updated 2 years ago
- 一键修改exe、dll的编译时间、创建时间、修改时间和访问时间☆197Apr 16, 2023Updated 2 years ago