HackJava / SpringLinks

《Spring漏洞研究》

☆46

Alternatives and similar repositories for Spring

Users that are interested in Spring are comparing it to the libraries listed below

Sorting:

R17a-17 / JavaVulnSummary
Java漏洞分析汇合
☆142Updated 3 years ago
SummerSec / LookupInterface
CodeQL 寻找 JNDI利用 Lookup接口
☆163Updated 3 years ago
longofo / Apache-Dubbo-Hessian2-CVE-2021-43297
Apache Dubbo Hessian2 CVE-2021-43297 demo
☆46Updated 3 years ago
su18 / rasp-vuln
当死去的记忆突然开始攻击我，我终于想起了我还写过一款十分十分垃圾的 rasp 靶场。
☆78Updated 2 years ago
testtttter / ACAF
Auto Code Audit Framework for Java
☆96Updated 3 years ago
0linlin0 / Java
java
☆54Updated 2 years ago
hosch3n / FastjsonVulns
[fastjson 1.2.80] CVE-2022-25845 aspectj fileread & groovy remote classload
☆92Updated 2 years ago
zxcvbn001 / CodeReview
代码审计总结
☆81Updated 3 years ago
xhycccc / Shiro-Vuln-Demo
Shiro漏洞实例源码
☆26Updated 4 years ago
haby0 / sec-note
记录各语言、框架中危险的sink，个人代码审计、漏洞研究使用。
☆116Updated 3 years ago
xyy-ws / NoAgent-memshell-scanner
☆107Updated 3 years ago
passer-W / snakeyaml-memshell
springboot跨线程注入内存马
☆121Updated 3 years ago
lz2y / DubboPOC
Apache Dubbo漏洞测试Demo及其POC
☆61Updated 2 years ago
ccdr4gon / Dr4gonSword
☆96Updated last year
Ciyfly / Source_code_learning
是我阅读各种源码写的笔记
☆73Updated 2 years ago
ax1sX / SpringSecurity
A list for Spring Security
☆124Updated last year
HackJava / JNDI
《JNDI-深入理解Java万恶之源》
☆37Updated last year
sf197 / MemoryShellHunter
Java Agent memory horse scanner combined with Call Graph modus
☆62Updated 2 years ago
kyo-w / Spel-research
Spel-research
☆26Updated 3 years ago
TheKingOfDuck / RCEFuzzer
一个以fuzz为中心思想的被动扫描工具
☆157Updated last year
iiiusky / javaweb-codereview
javaweb-codereview
☆30Updated 6 years ago
KpLi0rn / ysoserial
在原有yso基础上实现依赖分离，内存马注入等功能。A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
☆68Updated 3 years ago
0xrumble / BytecodeScreen
☆50Updated 2 years ago
Lonely-night / fastjsonVul
fastjson 80 远程代码执行漏洞复现
☆194Updated 2 years ago
xiaopan233 / GenerateNoHard
本工具的定位是快速生成Java安全相关的Payload，如内存马、反序列化链、JNDI url、Fastjson等，动态生成相关Payload，并附带相应的文档。
☆93Updated 4 months ago
xiaopan233 / Java_agent_without_file
Java agent without file 无文件的Java agent
☆78Updated 3 years ago
BeichenDream / JDR
☆142Updated 2 years ago
leveryd-asm / asm
Scanner platform based on Kubernetes and Argo-Workflow 基于k8s和argo工作流的扫描器
☆108Updated last year
Y4Sec-Team / CVE-2023-21939
JDK CVE-2023-21939
☆96Updated last year
Rvn0xsy / SMTP-NC
SMTP Netcat , test SMTP protocol
☆105Updated 3 years ago