java代码审计笔记
☆19Jun 8, 2024Updated last year
Alternatives and similar repositories for java-Code-Audit
Users that are interested in java-Code-Audit are comparing it to the libraries listed below
Sorting:
- Java代码审计学习笔记☆13Dec 20, 2024Updated last year
- 渗透测试目录扫描字典☆68Nov 24, 2025Updated 3 months ago
- 内网渗透学习的一份记录 mark☆12Sep 24, 2023Updated 2 years ago
- A Online PHP FilterChain Generator.☆17Aug 3, 2024Updated last year
- HaeToYakit是一个将hae配置文件转换为yakit适配的配置文件脚本☆85Sep 10, 2024Updated last year
- CVE-2024-21006 exp☆18Jul 29, 2024Updated last year
- 基于污点分析的JSP Webshell检测工具,模拟JVM的栈帧操作进行数据流分析,可以检测出各种变形的JSP Webshell☆21Dec 6, 2021Updated 4 years ago
- Java静态代码安全审计工具,使用JavaParser项目做语法分析,计划支持常见的Web漏洞与组件漏洞☆21Sep 20, 2021Updated 4 years ago
- PHP代码审计案例-1000PHP☆27Aug 20, 2024Updated last year
- 工控设备信息识别工具箱☆56Dec 4, 2025Updated 2 months ago
- 内存马生成工具 Tomcat、Weblogic、CMD、Behinder、Godzilla、Suo5......☆30Feb 18, 2025Updated last year
- ☆32Jan 24, 2025Updated last year
- 用友NC漏洞批量检测工具,支持POC显示、单一检测、批量检测、结果导出、AI交互等☆46Sep 8, 2025Updated 5 months ago
- Java 代码审计-存在风险的函数汇总。方便我们日常代码审计过程中快速定位漏洞点,配合静态代码分析工具做到事半功倍。Java code audit - summary of risky functions. It is convenient for us to quickl…☆31Jul 16, 2024Updated last year
- 此处是【炼石计划@Java代码审计】知识星球课程目录整理处。 【炼石计划@Java代码审计】专注Java代码审计入门与提升,我将学习路线分成了六个阶段也对应着六大套课程分享。 课程内容不深入开发细节,只关注Java代码审计应学应会的内容。☆32Nov 15, 2022Updated 3 years ago
- 织梦全版本漏洞扫描修改版本☆39Aug 18, 2024Updated last year
- 红蓝对抗快速搭建基础设施平台☆36Dec 2, 2022Updated 3 years ago
- 自动化扫描利器,指纹识别更精准,漏洞扫描更全面☆375Oct 29, 2025Updated 4 months ago
- A comprehensive repository for malware analysis and threat intelligence, including Cobalt Strike Beacon configurations, YARA rules, IOCs,…☆15Updated this week
- A IntelliJ Plugin for Tabby to Find Vulnerabilities Easily☆39Nov 12, 2024Updated last year
- hscan 网络资产收集与漏洞扫描探活 服务扫描(常规 & 非常规端口)、 poc探测( xray v2 & nuclei 格式) 、数据库等弱口令爆破 、内网常见漏洞利用☆97Jan 6, 2025Updated last year
- 一个简单的远程分离的加载器,免杀国内大部分杀软(360 火绒 Windows Defender 金山毒霸 电脑管家)☆82Jun 29, 2024Updated last year
- 针对于Spring框架的自动Java代码审计工具☆37Jan 24, 2022Updated 4 years ago
- ARL-Core官方仓库备份项目:集漏洞验证和漏洞利用的一个框架☆36May 21, 2024Updated last year
- CraftCMS RCE Checker (CVE-2025-32432)☆10Apr 27, 2025Updated 10 months ago
- 实现轻量级RPC框架,网络通信框架Netty、注册中心(Zookeeper、Nacos)、Java基础(注解、反射、多线程、Future、SPI 、动态代理)、自定义传输协议、多种序列化(ProtoBuf / Kyro / Hessian)、Gzip压缩、轮询、随机、一致性…☆14May 7, 2022Updated 3 years ago
- A tiny runtime hot patch tool for JAVA☆14Dec 22, 2024Updated last year
- 通过网络资产线索(如:域名,IP地址,资产名称等),利用FOFA访问网络空间测绘数据☆11Apr 23, 2024Updated last year
- BpArsenal, a Burp Suite plugin that can quickly convert http requests into command-line tool execution, launch third-party tools and open…☆22Oct 31, 2025Updated 4 months ago
- 攻击Java Web应用-[Java Web安全]☆12Dec 10, 2019Updated 6 years ago
- 利用代理驱动绕过JDBC Attack检测☆143Jun 15, 2025Updated 8 months ago
- 记录一些代码审计过的源码☆182Feb 26, 2025Updated last year
- ☆76Sep 10, 2025Updated 5 months ago
- Abandoned - fastjson 1.2.24-1.2.80 poc & vulns env & how to check vul☆96Oct 30, 2023Updated 2 years ago
- ☆68Jul 29, 2025Updated 7 months ago
- 结合四大识别插件优点而集合的专业的全球蜜罐检测工具 - 支持35+种国际蜜罐平台,165+条检测规则。☆74Aug 22, 2025Updated 6 months ago
- study_summary☆10Aug 8, 2022Updated 3 years ago
- 一款用Go实现的批量加载漏洞检测插件进行多线程扫描的框架。☆11Jan 20, 2024Updated 2 years ago
- Passets 被动资产识别框架数据清洗模块。☆12Nov 26, 2020Updated 5 years ago