cokeBeer / go-cvesLinks
收录go语言编写的项目、框架和组件出现的cve,或者一些相关的利用方式的文章
☆45Updated 2 years ago
Alternatives and similar repositories for go-cves
Users that are interested in go-cves are comparing it to the libraries listed below
Sorting:
- Easy burp sign extension!☆53Updated 9 months ago
- 是我阅读各种源码写的笔记☆74Updated 3 years ago
- 《Spring漏洞研究》☆47Updated 3 years ago
- cve-2022-34169 延伸出的Jdk Xalan的payload自动生成工具,可根据不同的Jdk生成出其所对应的xslt文件☆90Updated 2 years ago
- 基于污点分析和模拟栈帧技术的JSP Webshell检测☆48Updated last month
- Apache Dubbo漏洞测试Demo及其POC☆64Updated 2 years ago
- Java agent without file 无文件的Java agent☆82Updated 3 years ago
- A list for Spring Security☆125Updated last year
- Java Agent memory horse scanner combined with Call Graph modus☆64Updated 2 years ago
- ☆28Updated last year
- 编译原理学习代码仓库☆23Updated 3 years ago
- 在spring-aop中新发现的反序列化gadget-chain☆52Updated 10 months ago
- A IntelliJ Plugin for Tabby to Find Vulnerabilities Easily☆37Updated last year
- nativeRasp that can hook native methods☆24Updated 2 years ago
- 《JNDI-深入理解Java万恶之源》☆39Updated 2 years ago
- 一个高价值漏洞采集与推送服务 | A valueable vulnerability collection and push service☆31Updated last year
- 代码审计自动化系统,底层架构为蜻蜓编排系统,墨菲SCA,fortify,SemGrep,hema☆30Updated 8 months ago
- java☆54Updated 2 years ago
- ☆50Updated 3 years ago
- Automatically scan jar packages by using ast to find fastjson gadgets. In particular, this project is limited to mining Gadgets that may …☆48Updated 3 years ago
- 当死去的记忆突然开始攻击我,我终于想起了我还写过一款十分十分垃圾的 rasp 靶场。☆79Updated 3 years ago
- CodeQL 寻找 JNDI利用 Lookup接口☆163Updated 3 years ago
- JDK CVE-2023-21939☆95Updated 2 years ago
- [fastjson 1.2.80] CVE-2022-25845 aspectj fileread & groovy remote classload☆91Updated 3 years ago
- Extract React router info from React based website within browser☆41Updated last year
- Scanner platform based on Kubernetes and Argo-Workflow 基于k8s和argo工作流的扫描器☆109Updated last year
- A Go library for generating Java deserialization payloads.☆155Updated last year
- 安全升级jar包时,辅助检测Java Archive (JAR) 包之间兼容性,各类符号引用的存在检测,包括方法、方法签名、字段定义和引用、类引用等等☆14Updated last year
- 零成本实现CVE每日推送☆21Updated last year
- 之前方便自己研究RASP原理和绕过时顺手写的,用于快速启动和重置RASP环境☆71Updated last year