TheKingOfDuck / SinkFinderLinks
闭源系统半自动漏洞挖掘工具,针对 jar/war/zip 进行静态代码分析,输出从source到sink的可达路径。LLM将验证路径可达性,并根据上下文给出该路径可信分数
☆473Updated 2 months ago
Alternatives and similar repositories for SinkFinder
Users that are interested in SinkFinder are comparing it to the libraries listed below
Sorting:
- GitHub项目监控 && CodeQL自动扫描 (GitHub project monitoring && CodeQL automatic analysis)☆456Updated 8 months ago
- Common Exploitation Techniques for Java RCE Vulnerabilities in Real-World Scenarios | 实战场景较通用的 Java Rce 相关漏洞的利用方式☆528Updated 6 months ago
- 《深入JDBC安全:特殊URL构造与不出网反序列化利用技术揭秘》对应研究总结项目 "Deep Dive into JDBC Security: Special URL Construction and Non-Networked Deserialization Explo…☆489Updated last week
- Java web路由内存分析工具☆434Updated 3 months ago
- CTF-Java-Gadget专注于收集CTF中Java赛题的反序列化片段☆259Updated 9 months ago
- 记录学习codeql的过程☆389Updated 2 years ago
- ☆516Updated 3 years ago