Alternatives and similar repositories for JavaSec

Users that are interested in JavaSec are comparing it to the libraries listed below

• tabby-sec / tabby-intellij-plugin
  A IntelliJ Plugin for Tabby to Find Vulnerabilities Easily
  ☆37Updated 8 months ago
• TonyD0g / JSPHunter
  基于污点分析和模拟栈帧技术的JSP Webshell检测
  ☆46Updated last month
• Ape1ron / SpringAopInDeserializationDemo1
  在spring-aop中新发现的反序列化gadget-chain
  ☆50Updated 6 months ago
• lightless233 / sign-me-2
  Easy burp sign extension!
  ☆55Updated 6 months ago
• pacemrc / VulDebug
  Java漏洞调试分析集合
  ☆90Updated last year
• yulate / tabby-pipeline
  用于快速启动tabby 分析漏洞或者gadget的环境
  ☆81Updated 3 weeks ago
• l3yx / Java-RASP-Research-Env
  之前方便自己研究RASP原理和绕过时顺手写的，用于快速启动和重置RASP环境
  ☆71Updated 9 months ago
• WDLegend / gokart-2
  ☆18Updated 7 months ago
• kyo-w / Spel-research
  Spel-research
  ☆26Updated 3 years ago
• yzddmr6 / MyPresentations
  My security presentations
  ☆28Updated last year
• Ape1ron / davinci
  多组件客户端
  ☆73Updated 3 months ago
• Mount4in / Security-Conference-Topic
  Collect some security conference topics
  ☆50Updated last year
• trganda / ActiveMQ-RCE
  CVE-2023-46604
  ☆28Updated last year
• hldfight / Tai-e-WebPlugin
  Tai-e的Web插件
  ☆23Updated last year
• phith0n / tls_proxy
  A lightweight reverse proxy server that converts TLS traffic to TCP, allowing secure communication between clients and upstream servers.
  ☆74Updated 11 months ago
• cokeBeer / go-cves
  收录go语言编写的项目、框架和组件出现的cve，或者一些相关的利用方式的文章
  ☆41Updated 2 years ago
• waderwu / nativeRasp
  nativeRasp that can hook native methods
  ☆24Updated 2 years ago
• Boogipop / Netty-WebFlux-Memshell
  Netty/WebFlux 内存马
  ☆25Updated last year
• java-sec / tomcat-spi-backdoor
  Tomcat的SPI后门
  ☆8Updated 2 years ago
• woodpecker-appstore / java-memshell-generator
  Java 内存马生成插件
  ☆54Updated 2 years ago
• tabby-sec / tabby-vul-finder
  A vul-finder for loading CPG and automated finding vul-call-chains
  ☆60Updated 2 weeks ago
• HackJava / JNDI
  《JNDI-深入理解Java万恶之源》
  ☆37Updated last year
• cwkiller / JDBC-PROXY-Bypass
  利用代理驱动绕过JDBC Attack检测
  ☆123Updated last month
• Y4tacker / CobaltStrike4.7ServerDocker
  docker运行cs4.7server端
  ☆40Updated 2 years ago
• X1r0z / hessian-overlong-encoding
  Hessian UTF-8 Overlong Encoding
  ☆19Updated last year
• flowerwind / AutoGenerateXalanPayload
  cve-2022-34169 延伸出的Jdk Xalan的payload自动生成工具，可根据不同的Jdk生成出其所对应的xslt文件
  ☆92Updated 2 years ago
• lcark / Tai-e-demo
  用来将Tai-e改造为开箱即用的静态代码安全分析框架的一些demo
  ☆37Updated last year
• Y4Sec-Team / mysql-jdbc-tricks
  JDBC Attack Tricks
  ☆142Updated last year
• ax1sX / SpringSecurity
  A list for Spring Security
  ☆124Updated last year
• sf197 / MemoryShellHunter
  Java Agent memory horse scanner combined with Call Graph modus
  ☆64Updated 2 years ago