fengupupup / RocBLinks
鹏 RocB - Java代码审计IDEA插件 SAST
☆150Updated 4 years ago
Alternatives and similar repositories for RocB
Users that are interested in RocB are comparing it to the libraries listed below
Sorting:
- 一款通过污点追踪发现Jsp webshell的工具(A tool to find Jsp Webshell through stain tracking)☆178Updated 3 years ago
- SpringBoot Actuator未授权自动化利用,支持信息泄漏/RCE☆231Updated 4 years ago
- 适用于weblogic和Tomcat的无文件的内存马(memshell)☆270Updated 3 years ago
- Apache Shiro 反序列化漏洞检测与利用工具,一键注入内存马☆138Updated 4 years ago
- ☆142Updated 4 years ago
- fastjson bypass autotype 1.2.68 with Throwable and AutoCloseable.☆227Updated 3 years ago
- 攻击Java Web应用-[Java Web安全]☆79Updated 5 years ago
- ☆195Updated last year
- 个人使用CodeQL编写的一些规则☆175Updated 3 years ago
- ☆97Updated last year
- 代码审计总结☆84Updated 4 years ago
- Java漏洞分析汇合☆142Updated 3 years ago
- 记录各语言、框架中危险的sink,个人代码审计、漏洞研究使用。☆115Updated 3 years ago
- 批量检查目标是否为cdn☆140Updated 4 years ago
- 2020年~2021年 网站CMS、中间件、框架系统漏洞集合☆100Updated 4 years ago
- RMI 反序列化环境 一步步☆215Updated 5 years ago
- woodpecker框架weblogic信息探测插件☆184Updated 3 years ago
- CAS 硬编码 远程代码执行漏洞☆126Updated 4 years ago
- 云函数扫描器实现代码☆167Updated 6 months ago
- WIP: Demo for Attacking Apereo CAS☆94Updated 5 years ago
- 🐸Unauthorized Detection Framework未授权访问检测框架☆161Updated last year
- fastjson不出网利用、c3p0☆253Updated 4 years ago
- Tomcat 冰蝎内存马。☆214Updated 5 years ago
- 针对 403 页面的 fuzz 脚本☆123Updated 3 years ago
- Spring Cloud SnakeYAML 反序列化一键注入cmdshell和reGeorg☆135Updated 5 years ago
- 通过正则搜索、批量反编译特定Jar包中的class名称☆317Updated 3 years ago
- 收集整理一些漏洞,利用方法,poc等等,方便快速查阅☆59Updated 4 years ago
- 爬取各大SRC当日公告 | 通过微信通知的小工具 | 赏金工具☆101Updated 3 years ago
- DSO-Lab 漏洞研究成果整理☆83Updated 3 years ago
- fastjson 被动扫描、不出网payload生成☆370Updated 3 years ago