基于函数级污点分析的 Java 源代码漏洞审计工具JavaSinkTracer,通过 Model Context Protocol (MCP) 为 AI 助手提供安全分析能力。
☆105Oct 7, 2025Updated 5 months ago
Alternatives and similar repositories for JavaSinkTracer_MCP
Users that are interested in JavaSinkTracer_MCP are comparing it to the libraries listed below
Sorting:
- 基于Python javalang库开发的一款轻量级Java源代码审计工具,by Tr0e☆71Oct 23, 2025Updated 4 months ago
- 东方隐侠团队出品,代码审计skill☆64Feb 25, 2026Updated 3 weeks ago
- 对原版JNDIExploit进行修改增加线程和JMX注入内存马☆17Apr 23, 2025Updated 10 months ago
- 一款支持 目录扫描(可配合熊猫头)+自动绕403+敏感匹配 等的小脚本工具,目前此脚本属于创始测试版,后续会继续升级!!!CowCow🐂🐂☆18Dec 27, 2024Updated last year
- Example code to help getting start with SootUp☆14Aug 7, 2025Updated 7 months ago
- Aries is a free and open-source network scanner, support SYN scanning mode.☆34Sep 9, 2023Updated 2 years ago
- FastjsonScan4Burp 一款基于burp被动扫描的fastjson漏洞探测插件,可针对数据包中存在json的参数或请求体进行payload测试。旨在帮助安全人员更加便捷的发现、探测、深入利用fastjson漏洞,目前已实现fastjson探测、版本、依赖探测、出…☆157Mar 13, 2025Updated last year
- 😁java基础知识😮 互联网 Java 工程师进阶知识完全扫盲🤗面试指南↪Java学习☆22Jan 15, 2026Updated 2 months ago
- LeakDetector 是一款专为红队渗透测试人员和安全研究员设计的自动化信息泄露侦察工具。☆33Jan 31, 2026Updated last month
- ☆32May 9, 2025Updated 10 months ago
- ☆44Jan 25, 2022Updated 4 years ago
- AWD☆25Aug 22, 2023Updated 2 years ago
- redc use template | redc 使用模版库☆41Updated this week
- 一款用于红队攻防演练协作、渗透测试漏洞生命周期管理平台☆34Nov 24, 2025Updated 3 months ago
- AuditLuma是一个AI+智能体代码审计系统,它利用多个AI代理和先进的技术,包括多代理合作协议(MCP)和Self-RAG(检索增强生成),为代码库提供全面的安全分析,目前已经支持ollama部署的本地大模型☆232Aug 1, 2025Updated 7 months ago
- AI-powered reverse engineering assistant that bridges IDA Pro with language models through MCP.☆52Mar 13, 2026Updated last week
- ☆22Dec 5, 2022Updated 3 years ago
- ☆58Nov 28, 2023Updated 2 years ago
- ByPassTamperPlus / SQLMap加强绕WAF / Code By:Tas9er☆84Feb 12, 2026Updated last month
- ☆18Dec 25, 2024Updated last year
- 一款src捡洞扫描器☆25Jan 13, 2021Updated 5 years ago
- The container escape challenge of Be A RWCTFer competition (https://be-a-rwctfer.realworldctf.com/)☆61Mar 20, 2025Updated last year
- python黑客与一些脚本☆10Jul 18, 2019Updated 6 years ago
- 批量获取语雀下的个人知识库文档,并且按照原本的目录结构保存到本地,格式为docx。☆28Dec 14, 2023Updated 2 years ago
- SecVulEval is a dataset of C/C++ vulnerabilities.☆18Dec 20, 2025Updated 3 months ago
- Continuous build system used by Mono and Moonlight.☆34Apr 8, 2020Updated 5 years ago
- ☆22Nov 25, 2024Updated last year
- 一款互联网有效资产发现工具,方便快速对�多个企业进行信息收集(目前基于360 quake 会员api)☆126Oct 10, 2025Updated 5 months ago
- 就是一个burp插件啦(ÒܫÓױ)☆17Sep 9, 2021Updated 4 years ago
- 记录一些代码审计过的源码☆182Feb 26, 2025Updated last year
- Java内存马教程☆127Jul 8, 2025Updated 8 months ago
- ☆13Nov 7, 2023Updated 2 years ago
- Something To Do Android Application Security Research☆10May 14, 2021Updated 4 years ago
- 一个神一般的linux全架构全漏洞提权程序☆13Updated this week
- 静态分析笔记 Static-Analysis-Notes 程序分析笔记 资源分享☆187Jan 11, 2023Updated 3 years ago
- 一款针对海康的综合渗透测试利用工具☆23Mar 25, 2025Updated 11 months ago
- A software tool kit to help identify quickly what's inside your binary files.☆14Dec 9, 2024Updated last year
- HTTP报文加密的具体实现,用于测试 https://github.com/outlaws-bai/Galaxy☆33Dec 29, 2025Updated 2 months ago
- CodeVulnScan 是一款基于正则表达式的代码安全审计工具,专为红队成员快速定位sink设计。它能够快速扫描目标代码库,定位潜在的漏洞 Sink 点,提升代码审计效率。☆65Feb 11, 2026Updated last month