HackJava / SpringLinks
《Spring漏洞研究》
☆46Updated 3 years ago
Alternatives and similar repositories for Spring
Users that are interested in Spring are comparing it to the libraries listed below
Sorting:
- Java漏洞分析汇合☆142Updated 3 years ago
- Apache Dubbo漏洞测试Demo及其POC☆61Updated 2 years ago
- 当死去的记忆突然开始攻击我,我终于想起了我还写过一款十分十分垃圾的 rasp 靶场。☆78Updated 3 years ago
- CodeQL 寻找 JNDI利用 Lookup接口☆163Updated 3 years ago
- A list for Spring Security☆124Updated last year
- 记录各语言、框架中危险的sink,个人代码审计、漏洞研究使用。☆116Updated 3 years ago
- java☆54Updated 2 years ago
- ☆96Updated last year
- Apache Dubbo Hessian2 CVE-2021-43297 demo☆46Updated 3 years ago
- [fastjson 1.2.80] CVE-2022-25845 aspectj fileread & groovy remote classload☆92Updated 2 years ago
- Auto Code Audit Framework for Java☆96Updated 3 years ago
- 基于污点分析和模拟栈帧技术的JSP Webshell检测☆45Updated last month
- 《JNDI-深入理解Java万恶之源》☆37Updated last year
- A neo4j procedure for tabby☆126Updated 2 months ago
- 是我阅读各种源码写的笔记☆73Updated 2 years ago
- ☆108Updated 3 years ago
- javaweb-codereview☆30Updated 6 years ago
- Scanner platform based on Kubernetes and Argo-Workflow 基于k8s和argo工作流的扫描器☆109Updated last year
- 在原有yso基础上实现依赖分离,内存马注入等功能。A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆68Updated 3 years ago
- 代码审计总结☆81Updated 3 years ago
- Java agent without file 无文件的Java agent☆82Updated 3 years ago
- 静态程序分析工具 主要生成方法的CFG和.java文件的AST☆131Updated 2 years ago
- springboot跨线程注入内存马☆122Updated 3 years ago
- Java Agent memory horse scanner combined with Call Graph modus☆64Updated 2 years ago
- weblogic历史漏洞利用工具☆91Updated 3 years ago
- A Go library for generating Java deserialization payloads.☆155Updated 10 months ago
- CVE-2021-43297 POC,Apache Dubbo<= 2.7.13时可以实现RCE☆38Updated 3 years ago
- JDBC Attack Tricks☆142Updated last year
- 收录go语言编写的项目、框架和组件出现的cve,或者一些相关的利用方式的文章☆41Updated 2 years ago
- SpringBootAdmin-thymeleaf-SSTI which can cause RCE☆81Updated 2 years ago