HackJava/Spring external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

HackJava/Spring

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/HackJava/Spring)

Close

HackJava / SpringView on GitHubMore

• External links
• Readme badge

《Spring漏洞研究》

☆47Apr 26, 2022Updated 3 years ago

Alternatives and similar repositories for Spring

Users that are interested in Spring are comparing it to the libraries listed below

• KpLi0rn / AgentMemShell

  View on GitHub
  JavaAgent内存马
  ☆17Jun 15, 2021Updated 4 years ago
• HackJava / JNDI

  View on GitHub
  《JNDI-深入理解Java万恶之源》
  ☆39Nov 13, 2023Updated 2 years ago
• Getshell / HAETAE

  View on GitHub
  神器獬廌-CobaltStrike综合框架
  ☆10Oct 15, 2022Updated 3 years ago
• pmiaowu / RMITest

  View on GitHub
  就是一个练习RMI反序列化的最简单环境
  ☆30Jan 8, 2022Updated 4 years ago
• Getshell / PassiveScan

  View on GitHub
  PassiveScan-被动扫描之巅
  ☆69Nov 17, 2025Updated 4 months ago
• SiJiDo / JAVA-Serialize-vuln

  View on GitHub
  java反序列化漏洞笔记
  ☆24Apr 6, 2019Updated 6 years ago
• S9MF / ShiroScan2

  View on GitHub
  基于BurpShiroPassiveScan修改增加了Xray回显链生成
  ☆56Sep 6, 2022Updated 3 years ago
• woodpecker-framework / woodpecker-bcel

  View on GitHub
  woodpecker框架专用bcel库
  ☆12Apr 30, 2021Updated 4 years ago
• SummerSec / SPATool

  View on GitHub
  静态程序分析工具 主要生成方法的CFG和.java文件的AST
  ☆133Jul 12, 2023Updated 2 years ago
• Al1ex / 0DayList

  View on GitHub
  0DayList
  ☆15Apr 4, 2022Updated 3 years ago
• fynch3r / Gadgets

  View on GitHub
  Java反序列化漏洞利用链补全计划，仅用于个人归纳总结。
  ☆420Dec 3, 2021Updated 4 years ago
• safe6Sec / PentestDB

  View on GitHub
  各种数据库的利用姿势
  ☆1,033Jan 3, 2025Updated last year
• su18 / JDBC-Attack

  View on GitHub
  JDBC Connection URL Attack
  ☆441Sep 10, 2021Updated 4 years ago
• trganda / CVE-2022-22980

  View on GitHub
  Poc of CVE-2022-22980
  ☆32Jun 23, 2022Updated 3 years ago
• BOFs / BOFs

  View on GitHub
  Beacon Object Files.
  ☆36Feb 26, 2024Updated 2 years ago
• Y4er / dotnet-deserialization

  View on GitHub
  dotnet 反序列化学习笔记
  ☆513Oct 19, 2023Updated 2 years ago
• ASTTeam / CodeQL

  View on GitHub
  《深入理解CodeQL》Finding vulnerabilities with CodeQL.
  ☆1,758Nov 21, 2023Updated 2 years ago
• LandGrey / spring-boot-upload-file-lead-to-rce-tricks

  View on GitHub
  spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧
  ☆754Apr 14, 2021Updated 4 years ago
• Bywalks / K8s-Mind-Map

  View on GitHub
  K8S安全攻防思维导图 | Docker安全攻防思维导图
  ☆417Jun 22, 2022Updated 3 years ago
• Firebasky / CodeqlLearn

  View on GitHub
  记录学习codeql的过程
  ☆395Jun 9, 2023Updated 2 years ago
• SummerSec / learning-codeql

  View on GitHub
  CodeQL Java 全网最全的中文学习资料
  ☆799Mar 18, 2022Updated 4 years ago
• R17a-17 / JavaVulnSummary

  View on GitHub
  Java漏洞分析汇合
  ☆142Dec 14, 2021Updated 4 years ago
• RASSec / WebExp

  View on GitHub
  2020年~2021年 网站CMS、中间件、框架系统漏洞集合
  ☆36Mar 3, 2021Updated 5 years ago
• twosmi1e / Static-Analysis-and-Automated-Code-Audit

  View on GitHub
  静态分析及代码审计自动化相关资料收集
  ☆298Jul 29, 2022Updated 3 years ago
• fynch3r / fynch3r.github.io

  View on GitHub
  Java安全路上的学习笔记
  ☆84Feb 24, 2023Updated 3 years ago
• Anemone95 / taint-benchmark

  View on GitHub
  A benchmark to evaluate taint analysis
  ☆29Jun 20, 2022Updated 3 years ago
• DevanshRaghav75 / NoSQL_injection_stuff

  View on GitHub
  Learn what is NoSQL injection and how to find them ?
  ☆10Jul 22, 2021Updated 4 years ago
• fupinglee / MySQLMonitor

  View on GitHub
  MySQL实时监控工具（代码审计、黑盒测试辅助工具）
  ☆146Aug 9, 2021Updated 4 years ago
• achuna33 / Memoryshell-JavaALL

  View on GitHub
  收集内存马打入方式
  ☆507May 20, 2022Updated 3 years ago
• ASTTeam / SAST

  View on GitHub
  《深入理解SAST静态应用安全测试》Static Application Security Testing.
  ☆389Sep 28, 2025Updated 5 months ago
• ice-doom / CodeQLRule

  View on GitHub
  个人使用CodeQL编写的一些规则
  ☆180Mar 30, 2022Updated 3 years ago
• Goqi / ELong

  View on GitHub
  永恒之恶龙-Log4j漏洞安全自查工具
  ☆40Jan 18, 2022Updated 4 years ago
• Firebasky / ScanDF

  View on GitHub
  The purpose of this script is to bypass disablefund, provide some useful information, and dig the hook function of PHP extension.
  ☆14Jul 1, 2021Updated 4 years ago
• threedr3am / JSP-WebShells

  View on GitHub
  Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势
  ☆1,405Jan 18, 2022Updated 4 years ago
• su18 / hack-fastjson-1.2.80

  View on GitHub
  ☆525Sep 16, 2022Updated 3 years ago
• c0ny1 / ascii-jar

  View on GitHub
  构造字节在ASCII范围内的jar
  ☆139Feb 14, 2022Updated 4 years ago
• SummerSec / JavaLearnVulnerability

  View on GitHub
  Java漏洞学习笔记 Deserialization Vulnerability
  ☆946Jun 14, 2023Updated 2 years ago
• he1m4n6a / Go_Security_Study

  View on GitHub
  golang安全学习总结
  ☆172Jun 9, 2020Updated 5 years ago
• KpLi0rn / ysoserial

  View on GitHub
  在原有yso基础上实现依赖分离，内存马注入等功能。A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆68Sep 14, 2021Updated 4 years ago