Alternatives and similar repositories for java-sec-code

Users that are interested in java-sec-code are comparing it to the libraries listed below

• HackJava / HackJava
  《Java安全-只有Java安全才能拯救宇宙》Only Java Security Can Save The Universe.
  ☆2,806Updated 2 years ago
• phith0n / JavaThings
  Share Things Related to Java - Java安全漫谈笔记相关内容
  ☆1,953Updated 7 months ago
• Maskhe / javasec
  自己学习java安全的一些总结，主要是安全审计相关
  ☆1,672Updated 3 years ago
• threedr3am / learnjavabug
  Java安全相关的漏洞和技术demo，原生Java、Fastjson、Jackson、Hessian2、XML反序列化漏洞利用和Spring、Dubbo、Shiro、CAS、Tomcat、RMI、Nexus等框架\中间件\功能的exploits以及Java Security…
  ☆2,680Updated last year
• j3ers3 / Hello-Java-Sec
  ☕️ Java Security，安全编码和代码审计
  ☆1,686Updated 8 months ago
• Y4tacker / JavaSec
  a rep for documenting my study, may be from 0 to 0.1
  ☆2,180Updated last week
• feihong-cs / ShiroExploit-Deprecated
  Shiro550/Shiro721 一键化利用工具，支持多种回显方式
  ☆1,944Updated 4 years ago
• tabby-sec / tabby
  A CAT called tabby ( Code Analysis Tool )
  ☆1,574Updated 3 months ago
• bit4woo / knife
  A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅
  ☆1,856Updated this week
• rabbitmask / WeblogicScan
  Weblogic一键漏洞检测工具，V1.5，更新时间：20200730
  ☆2,262Updated 2 years ago
• HatBoy / Struts2-Scan
  Struts2全漏洞扫描利用工具
  ☆2,202Updated 4 years ago
• javaweb-sec / javaweb-sec
  ☆1,022Updated 5 months ago
• c0ny1 / chunked-coding-converter
  Burp suite 分块传输辅助插件
  ☆2,008Updated 3 years ago
• wyzxxz / jndi_tool
  JNDI服务利用工具 RMI/LDAP，支持部分场景回显、内存shell，高版本JDK场景下利用等，fastjson rce命令执行，log4j rce命令执行 漏洞检测辅助工具
  ☆2,002Updated last year
• wh1t3p1g / ysomap
  A helpful Java Deserialization exploit framework.
  ☆1,232Updated 9 months ago
• w-digital-scanner / w13scan
  Passive Security Scanner (被动式安全扫描器)
  ☆1,937Updated 2 years ago
• r0eXpeR / redteam_vul
  红队作战中比较常遇到的一些重点系统漏洞整理。
  ☆2,519Updated 4 years ago
• LoRexxar / Kunlun-M
  KunLun-M是一个完全开源的静态白盒扫描工具，支持PHP、JavaScript的语义扫描，基础安全、组件安全扫描，Chrome Ext\Solidity的基础扫描。
  ☆2,374Updated 5 months ago
• Wh0ale / SRC-experience
  工欲善其事，必先利其器
  ☆1,600Updated 3 years ago
• threedr3am / JSP-WebShells
  Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势
  ☆1,401Updated 3 years ago
• LandGrey / webshell-detect-bypass
  绕过专业工具检测的Webshell研究文章和免杀的Webshell
  ☆1,731Updated 5 years ago
• bit4woo / domain_hunter_pro
  domain_hunter的高级版本，SRC挖洞、HW打点之必备！自动化资产收集；快速Title获取；外部工具联动；等等
  ☆2,106Updated last week
• SummerSec / ShiroAttack2
  shiro反序列化漏洞综合利用,包含（回显执行命令/注入内存马）修复原版中NoCC的问题 https://github.com/j1anFen/shiro_attack
  ☆2,335Updated last year
• rtcatc / Packer-Fuzzer
  Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack…
  ☆3,172Updated last year
• EdgeSecurityTeam / EHole
  EHole(棱洞)3.0 重构版-红队重点攻击系统指纹探测工具
  ☆3,392Updated last year
• Threekiii / Vulnerability-Wiki
  一个基于 docsify 快速部署 Awesome-POC 漏洞文档的项目。Deploying the Awesome-POC repository via docsify.
  ☆1,982Updated this week
• Threezh1 / JSFinder
  JSFinder is a tool for quickly extracting URLs and subdomains from JS files on a website.
  ☆2,877Updated 3 years ago
• gh0stkey / Web-Fuzzing-Box
  Web Fuzzing Box - Web 模糊测试字典与一些Payloads
  ☆2,401Updated 5 months ago
• cn-panda / JavaCodeAudit
  Getting started with java code auditing 代码审计入门的小项目
  ☆926Updated 2 years ago
• pmiaowu / BurpShiroPassiveScan
  一款基于BurpSuite的被动式shiro检测插件
  ☆1,780Updated 2 years ago