fengupupup/RocB external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

fengupupup/RocB

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/fengupupup/RocB)

Close

fengupupup / RocBView on GitHubMore

• External links
• Readme badge

鹏 RocB - Java代码审计IDEA插件 SAST

☆151Sep 16, 2021Updated 4 years ago

Alternatives and similar repositories for RocB

Users that are interested in RocB are comparing it to the libraries listed below

• su18 / JDBC-Attack

  View on GitHub
  JDBC Connection URL Attack
  ☆440Sep 10, 2021Updated 4 years ago
• 5wimming / gadgetinspector

  View on GitHub
  利用链、漏洞检测工具
  ☆373Jul 31, 2024Updated last year
• feihong-cs / Java-Rce-Echo

  View on GitHub
  Java RCE 回显测试代码
  ☆1,016Oct 15, 2020Updated 5 years ago
• LandGrey / ClassHound

  View on GitHub
  利用任意文件下载漏洞循环下载反编译 Class 文件获得网站 Java 源代码
  ☆711May 10, 2021Updated 4 years ago
• SummerSec / learning-codeql

  View on GitHub
  CodeQL Java 全网最全的中文学习资料
  ☆799Mar 18, 2022Updated 3 years ago
• A-D-Team / attackRmi

  View on GitHub
  ☆232Jan 3, 2022Updated 4 years ago
• haby0 / sec-note

  View on GitHub
  记录各语言、框架中危险的sink，个人代码审计、漏洞研究使用。
  ☆117Dec 30, 2021Updated 4 years ago
• Rvn0xsy / zipcreater

  View on GitHub
  ZipCreater主要应用于跨目录的文件上传漏洞的利用，它能够快速进行压缩包生成。
  ☆187Apr 6, 2022Updated 3 years ago
• Ppsoft1991 / CodeReviewTools

  View on GitHub
  通过正则搜索、批量反编译特定Jar包中的class名称
  ☆320Dec 9, 2021Updated 4 years ago
• Daybr4ak / C2ReverseProxy

  View on GitHub
  一款可以在不出网的环境下进行反向代理及cs上线的工具
  ☆491Apr 26, 2023Updated 2 years ago
• HXSecurity / DongTai-agent-java

  View on GitHub
  Java Agent is a Java application probe of DongTai IAST, which collects method invocation data during runtime of Java application by dynam…
  ☆696Dec 25, 2023Updated 2 years ago
• Y4er / WebLogic-Shiro-shell

  View on GitHub
  WebLogic利用CVE-2020-2883打Shiro rememberMe反序列化漏洞，一键注册蚁剑filter内存shell
  ☆535Aug 25, 2020Updated 5 years ago
• BeichenDream / Kcon2021Code

  View on GitHub
  ☆274Oct 28, 2021Updated 4 years ago
• crisprss / net_memory_webshell

  View on GitHub
  用来存放平时写的一些net内存马，仅用于练手，需要可以自行修改
  ☆89May 3, 2022Updated 3 years ago
• A-D-Team / grafanaExp

  View on GitHub
  A exploit tool for Grafana Unauthorized arbitrary file reading vulnerability (CVE-2021-43798), it can burst plugins / extract secret_key …
  ☆268Oct 17, 2025Updated 4 months ago
• feihong-cs / JspMaster-Deprecated

  View on GitHub
  一款基于webshell命令执行功能实现的GUI webshell管理工具，支持流量加密
  ☆218Jun 4, 2021Updated 4 years ago
• depycode / fastjson-c3p0

  View on GitHub
  fastjson不出网利用、c3p0
  ☆255Jul 30, 2021Updated 4 years ago
• Firebasky / Java

  View on GitHub
  关于学习java安全的一些知识,正在学习中ing,欢迎fork and star
  ☆792Jul 11, 2023Updated 2 years ago
• proudwind / javasec_study

  View on GitHub
  java代码审计学习笔记
  ☆679Feb 24, 2020Updated 6 years ago
• jweny / MemShellDemo

  View on GitHub
  内存马Demo合集 memshell demo for java / php / python
  ☆425May 31, 2021Updated 4 years ago
• c0ny1 / java-object-searcher

  View on GitHub
  java内存对象搜索辅助工具
  ☆823Sep 23, 2022Updated 3 years ago
• LandGrey / spring-boot-upload-file-lead-to-rce-tricks

  View on GitHub
  spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧
  ☆754Apr 14, 2021Updated 4 years ago
• SummerSec / JavaLearnVulnerability

  View on GitHub
  Java漏洞学习笔记 Deserialization Vulnerability
  ☆945Jun 14, 2023Updated 2 years ago
• r00t4dm / aLIEz

  View on GitHub
  ☆198Sep 26, 2024Updated last year
• SummerSec / SPATool

  View on GitHub
  静态程序分析工具 主要生成方法的CFG和.java文件的AST
  ☆132Jul 12, 2023Updated 2 years ago
• flowerwind / JspFinder

  View on GitHub
  一款通过污点追踪发现Jsp webshell的工具(A tool to find Jsp Webshell through stain tracking)
  ☆176Jan 4, 2022Updated 4 years ago
• phith0n / zkar

  View on GitHub
  ZKar is a Java serialization protocol analysis tool implement in Go.
  ☆647Feb 15, 2025Updated last year
• lengjibo / NetUser

  View on GitHub
  使用windows api添加用户，可用于net无法使用时.分为nim版，c++版本，RDI版，BOF版。
  ☆421Sep 29, 2021Updated 4 years ago
• iceyhexman / flask_memory_shell

  View on GitHub
  Flask 内存马
  ☆313Mar 26, 2021Updated 4 years ago
• keven1z / weblogic_memshell

  View on GitHub
  适用于weblogic和Tomcat的无文件的内存马(memshell)
  ☆269Mar 4, 2022Updated 3 years ago
• grayddq / EBurst

  View on GitHub
  这个脚本主要提供对Exchange邮件服务器的账户爆破功能，集成了现有主流接口的爆破方式。
  ☆339May 22, 2023Updated 2 years ago
• j3ers3 / Hello-Java-Sec

  View on GitHub
  ☕️ Java Security，安全编码和代码审计
  ☆1,722Mar 7, 2025Updated 11 months ago
• exp1orer / JNDI-Inject-Exploit

  View on GitHub
  解决FastJson、Jackson、Log4j2、原生JNDI注入漏洞的高版本JDKBypass利用，探测本地可用反序列化gadget达到命令执行、回显命令执行、内存马注入
  ☆770Jan 26, 2022Updated 4 years ago
• cn-panda / JavaCodeAudit

  View on GitHub
  Getting started with java code auditing 代码审计入门的小项目
  ☆930Feb 22, 2023Updated 3 years ago
• dongfangyuxiao / BurpExtend

  View on GitHub
  基于Burp插件开发打造渗透测试自动化
  ☆422Dec 7, 2021Updated 4 years ago
• pmiaowu / log4j2Scan

  View on GitHub
  用于帮助企业内部快速扫描log4j2的jndi漏洞的burp插件
  ☆213Apr 18, 2023Updated 2 years ago
• bitterzzZZ / MemoryShellLearn

  View on GitHub
  分享几个直接可用的内存马，记录一下学习过程中看过的文章
  ☆975Mar 23, 2022Updated 3 years ago
• YoungRichOG / Hosts_Boom

  View on GitHub
  通过hosts碰撞发现目标内部系统，扩大攻击面。
  ☆46Aug 11, 2021Updated 4 years ago
• Ramos-dev / graph4code

  View on GitHub
  超硬核！使用图数据技术发现软件漏洞
  ☆185Sep 1, 2021Updated 4 years ago