fdu-sec / JDD
☆106Updated 2 weeks ago
Alternatives and similar repositories for JDD:
Users that are interested in JDD are comparing it to the libraries listed below
- 用来将Tai-e改造为开箱即用的静态代码安全分析框架的一些demo☆36Updated 11 months ago
- A neo4j procedure for tabby☆117Updated 9 months ago
- javaDeserializeLabs☆66Updated last year
- A vul-finder for loading CPG and automated finding vul-call-chains☆40Updated 5 months ago
- 2023 各大 CTF 的比赛附件☆49Updated last year
- Collection of CTF Web challenges I made☆52Updated last year
- Some ReadObject Sink With JDBC☆205Updated 10 months ago
- Lessons for syntaxflow zero to hero☆48Updated 6 months ago
- The container escape challenge of Be A RWCTFer competition (https://be-a-rwctfer.realworldctf.com/)☆59Updated last year
- 自动反编译闭源应用,创建codeql数据库☆302Updated 3 years ago
- S&P2023 Paper☆39Updated 2 years ago
- CodeQL分析闭源Jar包脚本,基于Apache Ant构建CodeQL数据库☆34Updated 2 years ago
- CodeQL extractor for java, which don't need to compile java source☆336Updated 2 years ago
- 基于污点分析的JSP Webshell检测工具,模拟JVM的栈帧操作进行数据流分析,可以检测出各种变形的JSP Webshell☆21Updated 3 years ago
- 静态程序分析工具 主要生成方法的CFG和.java文件的AST☆128Updated last year
- 《Spring漏洞研究》☆46Updated 2 years ago
- ☆21Updated 2 years ago
- 简单实现的 Java RASP☆35Updated 4 years ago
- Collect some security conference topics☆46Updated 8 months ago
- Cloud Native Security News☆63Updated 2 months ago
- 基于pwntools+angr的简单CTF AMD64 PWN AUTO FUZZ☆50Updated 2 months ago
- 一个辅助提交 CNVD/CNNVD/CVE 漏洞的工具☆18Updated 2 years ago
- proof-of-concept for generating Java deserialization payload | Proxy MemShell☆185Updated 9 months ago
- 闭源系统半自动漏洞挖掘工具,针对 jar/war/zip 进行静态代码分析,输出从source到sink的可达路径。LLM将验证路径可达性,并根据上下文给出该路径可信分数☆422Updated 2 months ago
- 2023白帽补天大会部分代码☆122Updated last year
- A collection of all the CTF challenges I have made.☆10Updated 2 years ago
- ☆55Updated 7 months ago
- 个人使用CodeQL编写的一些规则☆176Updated 2 years ago
- Tai-e的Web插件☆22Updated 9 months ago
- Auto Code Audit Framework for Java☆96Updated 3 years ago