Alternatives and similar repositories for JavaSec

Users that are interested in JavaSec are comparing it to the libraries listed below

• tabby-sec / tabby-intellij-plugin
  A IntelliJ Plugin for Tabby to Find Vulnerabilities Easily
  ☆37Updated 10 months ago
• Ape1ron / SpringAopInDeserializationDemo1
  在spring-aop中新发现的反序列化gadget-chain
  ☆51Updated 8 months ago
• lightless233 / sign-me-2
  Easy burp sign extension!
  ☆55Updated 7 months ago
• TonyD0g / JSPHunter
  基于污点分析和模拟栈帧技术的JSP Webshell检测
  ☆47Updated 2 months ago
• waderwu / nativeRasp
  nativeRasp that can hook native methods
  ☆24Updated 2 years ago
• WDLegend / gokart-2
  ☆18Updated 8 months ago
• Le1a / JarLibsConsolidator
  一个IDEA插件：一键收集项目中所有jar包依赖的工具插件。遍历项目目录收集所有jar文件，复制到all-in-one文件夹，并自动添加为项目库。
  ☆49Updated last month
• l3yx / Java-RASP-Research-Env
  之前方便自己研究RASP原理和绕过时顺手写的，用于快速启动和重置RASP环境
  ☆71Updated 11 months ago
• Mount4in / Security-Conference-Topic
  Collect some security conference topics
  ☆52Updated last year
• phith0n / tls_proxy
  A lightweight reverse proxy server that converts TLS traffic to TCP, allowing secure communication between clients and upstream servers.
  ☆76Updated last year
• pacemrc / VulDebug
  Java漏洞调试分析集合
  ☆91Updated last year
• cwkiller / ClassLinefix
  Java bytecode line number restoration tool
  ☆88Updated 2 weeks ago
• flowerwind / AutoGenerateXalanPayload
  cve-2022-34169 延伸出的Jdk Xalan的payload自动生成工具，可根据不同的Jdk生成出其所对应的xslt文件
  ☆90Updated 2 years ago
• yzddmr6 / MyPresentations
  My security presentations
  ☆28Updated 2 years ago
• Ape1ron / davinci
  多组件客户端
  ☆74Updated 4 months ago
• cokeBeer / go-cves
  收录go语言编写的项目、框架和组件出现的cve，或者一些相关的利用方式的文章
  ☆42Updated 2 years ago
• hldfight / Tai-e-WebPlugin
  Tai-e的Web插件
  ☆23Updated last year
• Y4Sec-Team / CVE-2023-21939
  JDK CVE-2023-21939
  ☆95Updated 2 years ago
• X1r0z / hessian-overlong-encoding
  Hessian UTF-8 Overlong Encoding
  ☆19Updated last year
• tabby-sec / tabby-vul-finder
  A vul-finder for loading CPG and automated finding vul-call-chains
  ☆62Updated last month
• lcark / Tai-e-demo
  用来将Tai-e改造为开箱即用的静态代码安全分析框架的一些demo
  ☆37Updated last year
• lz2y / DubboPOC
  Apache Dubbo漏洞测试Demo及其POC
  ☆62Updated 2 years ago
• Y4tacker / CobaltStrike4.7ServerDocker
  docker运行cs4.7server端
  ☆40Updated 2 years ago
• sf197 / MemoryShellHunter
  Java Agent memory horse scanner combined with Call Graph modus
  ☆64Updated 2 years ago
• cwkiller / JDBC-PROXY-Bypass
  利用代理驱动绕过JDBC Attack检测
  ☆130Updated 3 months ago
• KpLi0rn / DeserializeAll
  一个简单的批量反编译jar包的小脚本
  ☆42Updated 3 years ago
• Boogipop / Netty-WebFlux-Memshell
  Netty/WebFlux 内存马
  ☆25Updated last year
• ax1sX / SpringSecurity
  A list for Spring Security
  ☆125Updated last year
• Y4Sec-Team / mysql-jdbc-tricks
  JDBC Attack Tricks
  ☆144Updated 2 years ago
• HackJava / JNDI
  《JNDI-深入理解Java万恶之源》
  ☆38Updated last year