Alternatives and similar repositories for graph4code

Users that are interested in graph4code are comparing it to the libraries listed below

• boundaryx / cloudrasp-log4j2
  一个针对防御 log4j2 CVE-2021-44228 漏洞的 RASP 工具。 A Runtime Application Self-Protection module specifically designed for log4j2 RCE (CVE-2021-442…
  ☆123Updated 3 years ago
• wonderkun / CTFENV
  为应对CTF比赛而搭建的各种环境
  ☆156Updated 5 years ago
• chaitin / log4j2-vaccine
  log4j2-vaccine
  ☆84Updated 3 years ago
• he1m4n6a / Go_Security_Study
  golang安全学习总结
  ☆171Updated 5 years ago
• hudangwei / codemillx
  codemillx is a tool for CodeQL, extract the comments in the code and generate codeql module. 强化Go开源项目安全检测(内含开源项目漏洞挖掘方法)
  ☆204Updated 3 years ago
• threedr3am / log-agent
  利用agent hock指定的class，在jar运行周期内，用于跟踪被执行的方法，辅助做一些事情，比如挖洞啊
  ☆126Updated 5 years ago
• ODDFuzz / ODDFuzz
  S&P2023 Paper
  ☆39Updated 2 years ago
• iiiusky / java_rasp_example
  ☆28Updated 5 years ago
• threedr3am / gadgetinspector
  一个利用ASM对字节码进行污点传播分析的静态代码审计应用（添加了大量代码注释，适合大家进行源码学习）。也加入了挖掘Fastjson反序列化gadget chains和SQLInject（JdbcTemplate、MyBatis、JPA、Hibernate、原生jdbc等）静…
  ☆450Updated 3 years ago
• qiyeboy / kill_webshell_detect
  总结了免杀webshell的方法论
  ☆48Updated 5 years ago
• Ant-FG-Lab / non_RCE
  ☆41Updated 4 years ago
• AntSwordProject / ant_php_extension
  PHP 扩展, 用于 PHP-FPM、FastCGI、LD_PRELOAD等模式下突破 disabled_functions
  ☆104Updated 3 years ago
• meizjm3i / PHPVulFinder
  PHP Static Program Analysis
  ☆41Updated 2 years ago
• jweny / check_jsonp_based_on_ast
  基于AST的JSONP劫持漏洞自动化挖掘
  ☆93Updated 4 years ago
• h2-stack / LL-RASP
  Low-level RASP: Protecting Applications Implemented in High-level Programming Languages
  ☆64Updated last year
• virink / awd_auto_attack_framework
  AWD 自动化攻击框架
  ☆80Updated 6 years ago
• 404notf0und / CVE-Flow
  CVE Data Analysis, CVE Monitor, CVE EXP Prediction Based on Deep Learning. 1999-2020年存量CVE数据分析、监控CVE增量更新、基于深度学习的CVE EXP预测和自动化推送
  ☆174Updated 2 years ago
• longofo / rmi-jndi-ldap-jrmp-jmx-jms
  rmi、jndi、ldap、jrmp、jmx、jms一些demo测试
  ☆309Updated 3 years ago
• G4rb3n / Malbox
  恶意软件容器靶机
  ☆103Updated 4 years ago
• angelwhu / jvm-rasp
  基于JVM-Sandbox实现RASP安全监控防护
  ☆52Updated last year
• threedr3am / FindClassInJars
  个人用于在自动化挖掘gadget时，方便查找gadget chains中class所在jar包，以助于便捷审计测试gadget有效性的那么一个小工具。
  ☆60Updated 5 years ago
• LFYSec / XCTF2021Final-Dubbo
  Writeup and environment for XCTF2021Final-Dubbo
  ☆44Updated 4 years ago
• threedr3am / GuanYu
  JVM runtime class loading protection agent.（JVM类加载保护agent）
  ☆48Updated 4 years ago
• twosmi1e / Static-Analysis-and-Automated-Code-Audit
  静态分析及代码审计自动化相关资料收集
  ☆296Updated 3 years ago
• Ramos-dev / OSSTunnel
  基于亚马逊S3\阿里云OSS\腾讯COS通信隧道的远程管理工具
  ☆325Updated 4 years ago
• lalajun / RMIDeserialize
  RMI 反序列化环境 一步步
  ☆212Updated 4 years ago
• codeplutos / MySQL-JDBC-Deserialization-Payload
  MySQL JDBC Deserialization Payload / MySQL客户端jdbc反序列化漏洞payload
  ☆13Updated 5 years ago
• leveryd / go-sec-code
  Go相关的安全研究
  ☆229Updated last year
• langligelang / maobugs
  java 漏洞平台包含各种CVE
  ☆23Updated 3 years ago
• ceclin / 0ctf-2021-finals-soln-buggy-loader
  solution to buggyLoader of 0CTF/TCTF 2021 Finals
  ☆20Updated 3 years ago