baidu-security / openrasp-testcasesLinks
OpenRASP 漏洞测试环境
☆310Updated last year
Alternatives and similar repositories for openrasp-testcases
Users that are interested in openrasp-testcases are comparing it to the libraries listed below
Sorting:
- 基于 Docker 的真实应用测试环境☆262Updated last year
- IAST 灰盒扫描工具☆446Updated 2 years ago
- kiwi:安全源码审计工具☆242Updated 5 years ago
- java source code static code analysis and danger function identify prog☆535Updated 6 years ago
- 跟踪真实漏洞相关靶场环境搭建☆240Updated 6 years ago
- ☆212Updated 9 months ago
- 整理收集Struts2漏洞环境☆263Updated 7 years ago
- POC-T强化版本 POC-S , 用于红蓝对抗中快速验证Web应用漏洞, 对功能进行强化以及脚本进行分类添加,自带dnslog等, 平台补充来自vulhub靶机及其他开源项目的高可用POC☆359Updated 5 years ago
- Security Knowledge Structure(安全知识汇总)☆244Updated 6 years ago
- php code audit for cms vulnerabilities / 代码审计,对一些大型cms漏洞的复现研究,更新源码和漏洞exp☆279Updated 6 years ago
- 无回显漏洞测试辅助平台,平台使用Java编写,提供DNSLOG,HTTPLOG等功能,辅助渗透测试过程中无回显漏洞及SSRF等漏洞的验证和利用。☆383Updated 2 years ago
- 绿盟科技漏洞扫描器(RSAS)漏洞库☆360Updated 6 years ago
- ☆147Updated 3 years ago
- rmi、jndi、ldap、jrmp、jmx、jms一些demo测试☆310Updated 3 years ago
- tomcat使用了自带session同步功能时,不安全的配置(没有使用EncryptInterceptor)导致存在的反序列化漏洞,通过精心构造的数据包, 可以对使用了tomcat自带session同步功能的服务器进行攻击。PS:这个不是CVE-2020-9484,9484…☆213Updated 5 years ago
- Airbug(空气洞),收集漏洞poc用于安全产品☆353Updated 5 years ago
- QAQ Just study unserialize vulnerabilities in Java :)☆196Updated 6 years ago
- 通用的指纹识别规则☆372Updated 2 years ago
- 漏洞扫描:st2、tomcat、未授权访问等等☆288Updated 6 years ago
- weblogic t3 deserialization rce☆270Updated 7 years ago
- upload-labs writeup☆204Updated 7 years ago
- Web App Monitor☆226Updated 6 years ago
- 一个利用ASM对字节码进行污点传播分析的静态代码审计应用(添加了大量代码注释,适合大家进行源码学习)。也加入了挖掘Fastjson反序列化gadget chains和SQLInject(JdbcTemplate、MyBatis、JPA、Hibernate、原生jdbc等)静…☆449Updated 3 years ago
- 常用渗透poc收集☆294Updated 4 years ago
- web模糊测试 - 将漏洞可能性放大☆148Updated 6 years ago
- Demo code for post <Restrictions of JNDI Manipulation RCE & Bypass>☆261Updated 3 years ago
- ☆402Updated 5 years ago
- Java编写的Web漏洞靶场☆87Updated 3 years ago
- 基于poc-t 并在此基础上增加批量功能!☆197Updated 5 years ago
- weblogic 漏洞扫描工具☆344Updated 6 years ago