LFYSec / MScanLinks
The source code of [S&P'25] Detecting Taint-Style Vulnerabilities in Microservice-Structured Web Applications.
☆59Updated last month
Alternatives and similar repositories for MScan
Users that are interested in MScan are comparing it to the libraries listed below
Sorting:
- A neo4j procedure for tabby☆136Updated 7 months ago
- 用来将Tai-e改造为开箱即用的静态代码安全分析框架的一些demo☆37Updated last year
- A vul-finder for loading CPG and automated finding vul-call-chains☆69Updated 5 months ago
- CodeQL分析闭源Jar包脚本,基于Apache Ant构建CodeQL数据库☆40Updated 3 years ago
- javaDeserializeLabs☆70Updated 2 years ago
- 2023白帽补天大会部分代码☆129Updated 2 years ago
- 阿里巴巴安全SDK,提供SSRF、JDBC、XXE防护能力☆113Updated 2 months ago
- Some ReadObject Sink With JDBC☆240Updated last year
- Lessons for syntaxflow zero to hero☆53Updated last year
- ☆145Updated 2 years ago
- 腾讯ai渗透黑客松参赛作品(xjtuHunter)☆116Updated 3 weeks ago
- 简单实现的 Java RASP☆35Updated 5 years ago
- 2023 各大 CTF 的比赛附件☆49Updated 2 years ago
- JavaRce complements project - use RASP to prevent vulnerabilities☆23Updated last year
- The container escape challenge of Be A RWCTFer competition (https://be-a-rwctfer.realworldctf.com/)☆61Updated 9 months ago
- 构造字节在ASCII范围内的jar☆137Updated 3 years ago
- A Java Route Collection Tool☆102Updated last year
- 之前方便自己研究RASP原理和绕过时顺手写的,用于快速启动和重置RASP环境☆71Updated last year
- 使用 Docker 一键构建 JDK 源码的 CodeQL 数据库,方便使用 CodeQL 查找 JDK 中的数据。☆27Updated 7 months ago
- 腾讯云黑客松 - 智能渗透挑战赛 Top9☆261Updated 2 weeks ago
- Tai-e的Web插件☆23Updated last year
- Collection of CTF Web challenges I made☆53Updated 2 years ago
- A collection of all the CTF challenges I have made.☆11Updated 3 years ago
- ☆198Updated 2 months ago
- JDBC Attack Tricks☆153Updated 2 years ago
- idea插件,快速生成反序列化中常用的方法,比如setFieldValue、createTemplatesImpl等☆29Updated last year
- ☆23Updated 2 years ago
- proof-of-concept for generating Java deserialization payload | Proxy MemShell☆219Updated last year
- ☆24Updated last year
- Java表达式语句生成器☆194Updated 2 years ago