Alternatives and similar repositories for java-sec-code

Users that are interested in java-sec-code are comparing it to the libraries listed below

• HackJava / HackJava
  《Java安全-只有Java安全才能拯救宇宙》Only Java Security Can Save The Universe.
  ☆2,794Updated 2 years ago
• phith0n / JavaThings
  Share Things Related to Java - Java安全漫谈笔记相关内容
  ☆1,934Updated 5 months ago
• Maskhe / javasec
  自己学习java安全的一些总结，主要是安全审计相关
  ☆1,668Updated 3 years ago
• threedr3am / learnjavabug
  Java安全相关的漏洞和技术demo，原生Java、Fastjson、Jackson、Hessian2、XML反序列化漏洞利用和Spring、Dubbo、Shiro、CAS、Tomcat、RMI、Nexus等框架\中间件\功能的exploits以及Java Security…
  ☆2,677Updated last year
• j3ers3 / Hello-Java-Sec
  ☕️ Java Security，安全编码和代码审计
  ☆1,664Updated 7 months ago
• Y4tacker / JavaSec
  a rep for documenting my study, may be from 0 to 0.1
  ☆2,160Updated 9 months ago
• rabbitmask / WeblogicScan
  Weblogic一键漏洞检测工具，V1.5，更新时间：20200730
  ☆2,256Updated 2 years ago
• feihong-cs / ShiroExploit-Deprecated
  Shiro550/Shiro721 一键化利用工具，支持多种回显方式
  ☆1,943Updated 4 years ago
• c0ny1 / chunked-coding-converter
  Burp suite 分块传输辅助插件
  ☆1,999Updated 3 years ago
• bit4woo / knife
  A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅
  ☆1,836Updated last month
• javaweb-sec / javaweb-sec
  ☆1,017Updated 4 months ago
• wyzxxz / jndi_tool
  JNDI服务利用工具 RMI/LDAP，支持部分场景回显、内存shell，高版本JDK场景下利用等，fastjson rce命令执行，log4j rce命令执行 漏洞检测辅助工具
  ☆1,997Updated last year
• wh1t3p1g / ysomap
  A helpful Java Deserialization exploit framework.
  ☆1,230Updated 7 months ago
• Wh0ale / SRC-experience
  工欲善其事，必先利其器
  ☆1,597Updated 3 years ago
• r0eXpeR / redteam_vul
  红队作战中比较常遇到的一些重点系统漏洞整理。
  ☆2,519Updated 4 years ago
• tabby-sec / tabby
  A CAT called tabby ( Code Analysis Tool )
  ☆1,562Updated 2 months ago
• HatBoy / Struts2-Scan
  Struts2全漏洞扫描利用工具
  ☆2,207Updated 4 years ago
• LoRexxar / Kunlun-M
  KunLun-M是一个完全开源的静态白盒扫描工具，支持PHP、JavaScript的语义扫描，基础安全、组件安全扫描，Chrome Ext\Solidity的基础扫描。
  ☆2,365Updated 3 months ago
• LandGrey / webshell-detect-bypass
  绕过专业工具检测的Webshell研究文章和免杀的Webshell
  ☆1,732Updated 4 years ago
• bit4woo / domain_hunter_pro
  domain_hunter的高级版本，SRC挖洞、HW打点之必备！自动化资产收集；快速Title获取；外部工具联动；等等
  ☆2,100Updated 3 weeks ago
• coffeehb / Some-PoC-oR-ExP
  各种漏洞poc、Exp的收集或编写
  ☆2,469Updated 3 months ago
• c0ny1 / FastjsonExploit
  Fastjson vulnerability quickly exploits the framework（fastjson漏洞快速利用框架）
  ☆1,358Updated 2 years ago
• threedr3am / JSP-WebShells
  Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势
  ☆1,400Updated 3 years ago
• w-digital-scanner / w13scan
  Passive Security Scanner (被动式安全扫描器)
  ☆1,938Updated 2 years ago
• SummerSec / ShiroAttack2
  shiro反序列化漏洞综合利用,包含（回显执行命令/注入内存马）修复原版中NoCC的问题 https://github.com/j1anFen/shiro_attack
  ☆2,316Updated last year
• fofapro / vulfocus
  🚀Vulfocus 是一个漏洞集成平台，将漏洞环境 docker 镜像，放入即可使用，开箱即用。
  ☆3,380Updated 3 weeks ago
• rtcatc / Packer-Fuzzer
  Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack…
  ☆3,156Updated last year
• cn-panda / JavaCodeAudit
  Getting started with java code auditing 代码审计入门的小项目
  ☆923Updated 2 years ago
• EdgeSecurityTeam / EHole
  EHole(棱洞)3.0 重构版-红队重点攻击系统指纹探测工具
  ☆3,382Updated last year
• Threezh1 / JSFinder
  JSFinder is a tool for quickly extracting URLs and subdomains from JS files on a website.
  ☆2,858Updated 3 years ago