Alternatives and similar repositories for spring-rce-2022-03

Users that are interested in spring-rce-2022-03 are comparing it to the libraries listed below

• cn-panda / logbackRceDemo
  The project is a simple vulnerability Demo environment written by SpringBoot. Here, I deliberately wrote a vulnerability environment wher…
  ☆87Updated 4 years ago
• cckuailong / spring-cloud-function-SpEL-RCE
  spring-cloud-function SpEL RCE, Vultarget & Poc
  ☆135Updated 3 years ago
• snyk / snyk-maven-plugin
  Test and monitor your projects for vulnerabilities with Maven. This plugin is officially maintained by Snyk.
  ☆82Updated last month
• MysterAitch / JavaParser-AST-Inspector
  Using JavaParser (https://github.com/JavaParser/JavaParser), browse and navigate the Abstract Syntax Tree (AST) based on the code in your…
  ☆51Updated 3 weeks ago
• chaitin / log4j2-vaccine
  log4j2-vaccine
  ☆84Updated 4 years ago
• craig / SpringCore0day
  SpringCore0day from https://share.vx-underground.org/ & some additional links
  ☆396Updated 3 years ago
• jvm-rasp / jrasp-agent
  专注于JVM的运行时防御系统RASP
  ☆296Updated last year
• luelueking / ClazzSearcher
  一款使用Yaml定义搜索规则来搜索Class的工具
  ☆107Updated 2 years ago
• momosecurity / mosec-maven-plugin
  用于检测maven项目的第三方依赖组件是否存在安全漏洞。
  ☆103Updated 3 years ago
• httptoolkit / jvm-http-proxy-agent
  A JVM agent that automatically forces a proxy for HTTP(S) connections and trusts MitM certificates, for all major JVM HTTP clients
  ☆87Updated 3 weeks ago
• shadowsock5 / jackson-databind-POC
  ☆19Updated 5 years ago
• phith0n / zkar
  ZKar is a Java serialization protocol analysis tool implement in Go.
  ☆631Updated 10 months ago
• dschadow / JavaSecurity
  Java web and command line applications demonstrating various security topics
  ☆237Updated last week
• kvesta / vesta
  A static analysis of vulnerabilities, Docker and Kubernetes cluster configuration detect toolkit based on the real penetration of cloud c…
  ☆207Updated 7 months ago
• IndustriousSnail / javassist-learn
  Javassist官方文档中文翻译
  ☆84Updated 6 years ago
• welk1n / JNDI-Injection-Bypass
  Some payloads of JNDI Injection in JDK 1.8.0_191+
  ☆483Updated 5 years ago
• luelueking / Bypass_JVM_Verifier
  Bypass JVM Class ByteCode Verifier , 对抗反编译器
  ☆116Updated 2 years ago
• jrialland / ajp-client
  Java implementation of an AJP13 protocol client (aka Apache JServ), allowing to send requests to a servlet container using this protocol.
  ☆30Updated last week
• XuCcc / VulEnv
  Debug CVEs!
  ☆36Updated 2 years ago
• ikkisoft / SerialKiller
  Look-Ahead Java Deserialization Library
  ☆421Updated 5 years ago
• 4ra1n / class-obf
  一个 CLASS 文件混淆工具，支持方法字段参数名引用分析和重命名混淆，支持字符串提取/AES加密运行时解密/整型异或混淆/垃圾代码花指令混淆/错误注解崩溃/特殊字符迷惑用户/反编译器对抗/方法和字段的隐藏等，配置简单，容易上手
  ☆297Updated 2 weeks ago
• pandening / Java-debug-tool
  Java dynamic debug tool
  ☆104Updated last year
• 4ra1n / code-inspector
  JavaWeb漏洞审计工具，构建方法调用链并模拟栈帧进行分析
  ☆334Updated 2 years ago
• voidfyoo / rwctf-4th-desperate-cat
  ☆51Updated 3 years ago
• AbelChe / evil_minio
  EXP for CVE-2023-28434 MinIO unauthorized to RCE
  ☆314Updated 2 years ago
• h2-stack / LL-RASP
  Low-level RASP: Protecting Applications Implemented in High-level Programming Languages
  ☆69Updated 2 months ago
• boundaryx / cloudrasp-log4j2
  一个针对防御 log4j2 CVE-2021-44228 漏洞的 RASP 工具。 A Runtime Application Self-Protection module specifically designed for log4j2 RCE (CVE-2021-442…
  ☆123Updated 4 years ago
• ODDFuzz / ODDFuzz
  S&P2023 Paper
  ☆39Updated 3 years ago
• chenlichao-cn / wmi4j
  Pure Java WMI Client
  ☆29Updated 9 years ago
• jar-analyzer / jar-analyzer-v1-cli
  本项目可以把一个或多个Jar包构建成数据库，用户连接数据库后通过SQL语句任意搜索需要的内容，例如类和方法信息，方法调用关系等
  ☆75Updated 2 years ago