blindpirate / spring-rce-2022-03Links
☆15Updated 3 years ago
Alternatives and similar repositories for spring-rce-2022-03
Users that are interested in spring-rce-2022-03 are comparing it to the libraries listed below
Sorting:
- spring-cloud-function SpEL RCE, Vultarget & Poc☆135Updated 3 years ago
- The project is a simple vulnerability Demo environment written by SpringBoot. Here, I deliberately wrote a vulnerability environment wher…☆87Updated 3 years ago
- log4j2-vaccine☆84Updated 3 years ago
- ☆19Updated 5 years ago
- 一个针对防御 log4j2 CVE-2021-44228 漏洞的 RASP 工具。 A Runtime Application Self-Protection module specifically designed for log4j2 RCE (CVE-2021-442…☆123Updated 3 years ago
- 一款使用Yaml定义搜索规则来搜索Class的工具☆104Updated 2 years ago
- 专注于JVM的运行时防御系统RASP☆290Updated last year
- Using JavaParser (https://github.com/JavaParser/JavaParser), browse and navigate the Abstract Syntax Tree (AST) based on the code in your…☆51Updated this week
- SpringCore0day from https://share.vx-underground.org/ & some additional links☆396Updated 3 years ago
- 用于检测maven项目的第三方依赖组件是否存在安全漏洞。☆103Updated 3 years ago
- rmi、jndi、ldap、jrmp、jmx、jms一些demo测试☆311Updated 3 years ago
- ZKar is a Java serialization protocol analysis tool implement in Go.☆627Updated 8 months ago
- 静态程序分析工具 主要生成方法的CFG和.java文件的AST☆132Updated 2 years ago
- Low-level RASP: Protecting Applications Implemented in High-level Programming Languages☆68Updated last week
- Java web and command line applications demonstrating various security topics☆238Updated last week
- ☆41Updated 4 years ago
- Debug CVEs!☆36Updated 2 years ago
- 本项目可以把一个或多个Jar包构建成数据库��,用户连接数据库后通过SQL语句任意搜索需要的内容,例如类和方法信息,方法调用关系等☆75Updated 2 years ago
- Libinjection in Java☆41Updated 9 years ago
- ☆273Updated 4 years ago
- log4j2-core JAR w/o JndiLookup.class☆60Updated 3 years ago
- A branch (technically done as a subtree) of apache jasper with tomcat dependencies removed.☆13Updated last week
- 一个利用ASM对字节码进行污点传播分析的静态代码审计��应用(添加了大量代码注释,适合大家进行源码学习)。也加入了挖掘Fastjson反序列化gadget chains和SQLInject(JdbcTemplate、MyBatis、JPA、Hibernate、原生jdbc等)静…☆454Updated 3 years ago
- Test and monitor your projects for vulnerabilities with Maven. This plugin is officially maintained by Snyk.☆82Updated last month
- Bypass JVM Class ByteCode Verifier , 对抗反编译器☆113Updated 2 years ago
- 超硬核!使用图数据技术发现软件漏洞☆185Updated 4 years ago
- TongASDP漏洞测试环境☆35Updated 2 years ago
- 不定期记录一下浪费了时间去关注过的垃圾CVE漏洞。☆119Updated 2 years ago
- 一个 CLASS 文件混淆工具,被多个知名安全工具集成,支持方法名/字段名/参数名引用分析和重命名混淆方式,支持字符串提取/AES加密运行时解密/整型异或混淆/垃圾代码花指令混淆/错误注解崩溃混淆/特殊字符导致难以阅读等方式,支持方法和字段的隐藏,配置简单,容易上手☆272Updated 2 weeks ago
- Some payloads of JNDI Injection in JDK 1.8.0_191+☆482Updated 4 years ago