LeadroyaL/java-xxe-defense-demo external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

LeadroyaL/java-xxe-defense-demo

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/LeadroyaL/java-xxe-defense-demo)

Close

LeadroyaL / java-xxe-defense-demoView on GitHubMore

• External links
• Readme badge

java xxe defense demo

☆49Jul 18, 2019Updated 6 years ago

Alternatives and similar repositories for java-xxe-defense-demo

Users that are interested in java-xxe-defense-demo are comparing it to the libraries listed below

• threedr3am / log-agent

  View on GitHub
  利用agent hock指定的class，在jar运行周期内，用于跟踪被执行的方法，辅助做一些事情，比如挖洞啊
  ☆125Jul 17, 2020Updated 5 years ago
• LeadroyaL / java_xxe_2019

  View on GitHub
  总结了一下2019年在JVM环境中使用XXE攻击的知识
  ☆58Oct 31, 2019Updated 6 years ago
• codeplutos / MySQL-JDBC-Deserialization-Payload

  View on GitHub
  MySQL JDBC Deserialization Payload / MySQL客户端jdbc反序列化漏洞payload
  ☆13Feb 8, 2020Updated 6 years ago
• iiiusky / java_rasp_example

  View on GitHub
  ☆28Jul 18, 2020Updated 5 years ago
• kingkaki / ciscn_sshop

  View on GitHub
  参赛所用的sshop平台
  ☆11Jun 26, 2018Updated 7 years ago
• b1ngz / spring-boot-actuator-cloud-vul

  View on GitHub
  Spring Boot Actuator + Spring Cloud Vul Env
  ☆19Dec 25, 2019Updated 6 years ago
• threedr3am / jar-compatibility-detector

  View on GitHub
  安全升级jar包时，辅助检测Java Archive (JAR) 包之间兼容性，各类符号引用的存在检测，包括方法、方法签名、字段定义和引用、类引用等等
  ☆14Jul 7, 2024Updated last year
• fnmsd / OpenJDK8-BuildEnv-Docker

  View on GitHub
  ☆17Apr 17, 2021Updated 4 years ago
• pwntester / JRE8u20_RCE_Gadget

  View on GitHub
  JRE8u20_RCE_Gadget
  ☆255Jul 1, 2016Updated 9 years ago
• Lonely-night / fastjson_gadgets_scanner

  View on GitHub
  ☆131Jun 17, 2022Updated 3 years ago
• mogwailabs / deserialization-filter-blacklists

  View on GitHub
  Native Java serialization filter blacklist for common gadgets
  ☆20Sep 12, 2019Updated 6 years ago
• waderwu / attackRmi

  View on GitHub
  attackRmi
  ☆258Oct 14, 2020Updated 5 years ago
• 0Kee-Team / JavaProbe

  View on GitHub
  A Java runtime information-gathering tool which uses the Java Attach API for information acquisition
  ☆204Apr 26, 2021Updated 4 years ago
• 4ra1n / __asm__

  View on GitHub
  Java Inline ASM Library (一个Java内联汇编的库，可以让你在普通Java代码中插入任意的JVM指令，实现类似内联汇编的功能)
  ☆26Dec 5, 2022Updated 3 years ago
• w0x68y / bypassWAF

  View on GitHub
  bypassD盾、安全狗、云锁
  ☆108Mar 31, 2021Updated 4 years ago
• LeadroyaL / fastjson-blacklist

  View on GitHub
  ☆835Jun 7, 2022Updated 3 years ago
• airman604 / jdbc-backdoor

  View on GitHub
  A fake JDBC driver that allows OS command execution.
  ☆125Oct 2, 2022Updated 3 years ago
• 404notf0und / Financial-Attacker-Groups

  View on GitHub
  Analysis Financial Attacker Groups, 金融行业攻击者团伙研究
  ☆23Jun 24, 2021Updated 4 years ago
• JackOfMostTrades / gadgetinspector

  View on GitHub
  A byte code analyzer for finding deserialization gadget chains in Java applications
  ☆1,079Jun 15, 2021Updated 4 years ago
• Afant1 / RemoteObjectInvocationHandler

  View on GitHub
  bypass JEP290 RaspHook code
  ☆63Sep 21, 2020Updated 5 years ago
• tardc / CVE-2023-27524

  View on GitHub
  Apache Superset Auth Bypass (CVE-2023-27524)
  ☆11May 9, 2023Updated 2 years ago
• LuckyC4t / gosec-m

  View on GitHub
  gosec动态规则修改版
  ☆12Jun 29, 2021Updated 4 years ago
• feihong-cs / Java-Rce-Echo

  View on GitHub
  Java RCE 回显测试代码
  ☆1,016Oct 15, 2020Updated 5 years ago
• niexinming / python_hook

  View on GitHub
  ☆51Aug 16, 2018Updated 7 years ago
• paul-axe / ctf

  View on GitHub
  CTF stuff
  ☆40Dec 5, 2022Updated 3 years ago
• LFYSec / XCTF2021Final-Dubbo

  View on GitHub
  Writeup and environment for XCTF2021Final-Dubbo
  ☆44May 31, 2021Updated 4 years ago
• Imanfeng / Apache-Solr-RCE

  View on GitHub
  Apache Solr Exploits 🌟
  ☆348Oct 13, 2020Updated 5 years ago
• 1nhann / ysoserial

  View on GitHub
  ysoserial for 1nhann
  ☆11Sep 26, 2022Updated 3 years ago
• GrrrDog / ZeroNights-HackQuest-2016

  View on GitHub
  2 web tasks from ZeroNights HackQuest 2016
  ☆50Mar 24, 2017Updated 8 years ago
• threedr3am / GuanYu

  View on GitHub
  JVM runtime class loading protection agent.（JVM类加载保护agent）
  ☆48Mar 25, 2021Updated 4 years ago
• codeplutos / java-security-manager-bypass

  View on GitHub
  ☆153Jun 24, 2019Updated 6 years ago
• lightless233 / Java-Unserialization-Study

  View on GitHub
  QAQ Just study unserialize vulnerabilities in Java :)
  ☆196Aug 22, 2018Updated 7 years ago
• shengqi158 / fastjson-remote-code-execute-poc

  View on GitHub
  fastjson remote code execute poc 直接用intellij IDEA打开即可 首先编译得到Test.class，然后运行Poc.java
  ☆403Dec 16, 2022Updated 3 years ago
• uknowsec / Frida-Hook-In-Java-Notes

  View on GitHub
  Java层frida hook学习笔记 https://uknowsec.cn
  ☆47Feb 6, 2020Updated 6 years ago
• Lucifaer / head_first_javarasp

  View on GitHub
  一些Java RASP demo
  ☆11Sep 26, 2019Updated 6 years ago
• hl0rey / Web_ExternalC2_Demo

  View on GitHub
  Web ExternalC2 Demo
  ☆52Aug 18, 2020Updated 5 years ago
• Arcueld / Afrp

  View on GitHub
  ☆16Jul 3, 2024Updated last year
• Snowming04 / InjectProcess

  View on GitHub
  寻找可注入进程
  ☆13Jul 16, 2020Updated 5 years ago
• SecWiki / svn_git_scanner

  View on GitHub
  用于扫描git，svn泄露
  ☆11Jul 29, 2015Updated 10 years ago