corda / djvm

Related projects: ⓘ

• kohsuke / youdebug
  Non-interactive Java debugger with Groovy
  ☆79Updated 5 months ago
• Contrast-Security-OSS / joogle
  A static analysis API for finding deserialization attack gadgets
  ☆37Updated last year
• Imanfeng / Blockchain-Public-Chain-and-Smart-Contract-Vulnerability
  How to Exploit Blockchain Public Chain and Smart Contract Vulnerability
  ☆8Updated 5 years ago
• rwincey / JavaShellcodeRunner
  JavaShellcodeRunner
  ☆10Updated 10 years ago
• Rivaill / blockchain-security-awesome
  ☆36Updated this week
• Contrast-Security-OSS / contrast-rO0
  A tiny Java agent that blocks attacks against unsafe deserialization
  ☆82Updated 6 years ago
• shawnmckinney / remote-code-execution-sample
  Demonstrate how usage of the Java Security Manager can prevent Remote Code Execution (RCE) exploits.
  ☆25Updated 9 months ago
• kantega / notsoserial
  Java Agent which mitigates deserialisation attacks by making certain classes unserializable
  ☆183Updated 8 years ago
• XuanMaoSecLab / DolphinChain
  DolphinChain is the first Vulnerable Blockchain Application in the world!
  ☆16Updated 5 years ago
• frohoff / inspector-gadget
  Primitive tool for exploring/querying Java classes via the Tinkerpop Gremlin graph traversal language
  ☆103Updated 8 years ago
• slowmist / Ontology-Triones-Service-Node-security-checklist
  Ontology Triones Service Node security checklist（本体北斗共识集群安全执行指南）
  ☆45Updated 2 years ago
• fergarrui / custom-bytecode-analyzer
  Java bytecode analyzer customizable via JSON rules
  ☆74Updated 6 years ago
• OWASP / www-project-java-encoder
  OWASP Foundation Web Respository
  ☆12Updated last month
• dschadow / CloudSecurity
  Cloud security projects with Spring Cloud Config Server and Vault
  ☆27Updated 2 weeks ago
• codeplutos / java-security-manager-bypass
  ☆139Updated 5 years ago
• im-bug / BlockChain-Security-List
  ☆70Updated 6 years ago
• blindpirate / spring-rce-2022-03-hotfix
  ☆15Updated 2 years ago
• erpscanteam / CVE-2018-2636
  ERPScan Public POC for CVE-2018-2636
  ☆22Updated 6 years ago
• victims / maven-security-versions
  Identify vulnerable libraries in Maven dependencies
  ☆45Updated last year
• Cisco-AMP / java_security
  ☆14Updated 5 years ago
• psycopaths / jdoop
  An automatic testing tool for Java software
  ☆24Updated 6 years ago
• GrrrDog / ZeroNights-HackQuest-2016
  2 web tasks from ZeroNights HackQuest 2016
  ☆51Updated 7 years ago
• frohoff / marshalsec
  ☆70Updated 7 years ago
• pwntester / JVMDeserialization
  PoC for Scala and Groovy
  ☆14Updated 8 years ago
• CaledoniaProject / CVE-2018-1270
  Spring messaging STOMP protocol RCE
  ☆114Updated 6 years ago
• zerothoughts / spring-jndi
  Proof of concept exploit, showing how to do bytecode injection through untrusted deserialization with Spring Framework 4.2.4
  ☆116Updated 5 years ago
• nkbai / defcon26
  my talk on defcon26
  ☆20Updated 5 years ago
• LeadroyaL / java_xxe_2019
  总结了一下2019年在JVM环境中使用XXE攻击的知识
  ☆57Updated 4 years ago
• zhazhami / upload-fuzzer
  Upload Fuzzer for Burpsuite
  ☆16Updated 6 years ago
• gagliardetto / codebox
  Generate CodeQL taint-tracking models for Go (along with tests) in a graphical UI
  ☆20Updated last year