鹏 RocB - Java代码审计IDEA插件 SAST
☆149Sep 16, 2021Updated 4 years ago
Alternatives and similar repositories for RocB
Users that are interested in RocB are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Java反序列化漏洞利用链补全计划,仅用于个人归纳总结。☆419Dec 3, 2021Updated 4 years ago
- Java RCE 回显测试代码☆1,014Oct 15, 2020Updated 5 years ago
- JDBC Connection URL Attack☆450Sep 10, 2021Updated 4 years ago
- CodeQL Java 全网最全的中文学习资料☆799Mar 18, 2022Updated 4 years ago
- 利用链、漏洞检测工具☆375Jul 31, 2024Updated last year
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- ☆232Jan 3, 2022Updated 4 years ago
- 记录各语言、框架中危险的sink,个人代码审计、漏洞研究使用。☆119Dec 30, 2021Updated 4 years ago
- WebLogic利用CVE-2020-2883打Shiro rememberMe反序列化漏洞,一键注册蚁剑filter内存shell☆534Aug 25, 2020Updated 5 years ago
- 一款可以在不出网的环境下进行反向代理及cs上线的工具☆492Apr 26, 2023Updated 3 years ago
- ZipCreater主要应用于跨目录的文件上传漏洞的利用,它能够快速进行压缩包生成。☆186Apr 6, 2022Updated 4 years ago
- 通过正则搜索、批量反编译特定Jar包中的class名称☆322Dec 9, 2021Updated 4 years ago
- 利用任意文件下载漏洞循环下载反编译 Class 文件获得网站 Java 源代码☆714May 10, 2021Updated 5 years ago
- java代码审计学习笔记☆685Feb 24, 2020Updated 6 years ago
- Java Agent is a Java application probe of DongTai IAST, which collects method invocation data during runtime of Java application by dynam…☆695Dec 25, 2023Updated 2 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- ☆275Oct 28, 2021Updated 4 years ago
- fastjson不出网利用、c3p0☆257Jul 30, 2021Updated 4 years ago
- 静态程序分析工具 主要生成方法的CFG和.java文件的AST☆135Jul 12, 2023Updated 2 years ago
- ☆197Sep 26, 2024Updated last year
- java内存对象搜索辅助工具☆821Sep 23, 2022Updated 3 years ago
- 一款基于webshell命令执行功能实现的GUI webshell管理工具,支持流量加密☆219Jun 4, 2021Updated 4 years ago
- 内存马Demo合集 memshell demo for java / php / python☆423May 31, 2021Updated 4 years ago
- 关于学习java安全的一些知识,正在学习中ing,欢迎fork and star☆790Jul 11, 2023Updated 2 years ago
- A exploit tool for Grafana Unauthorized arbitrary file reading vulnerability (CVE-2021-43798), it can burst plugins / extract secret_key …☆269Oct 17, 2025Updated 7 months ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- 解决FastJson、Jackson、Log4j2、原生JNDI注入漏洞的高版本JDKBypass利用,探测本地可用反序列化gadget达到命令执行、回显命令执行、内存马注入☆773Jan 26, 2022Updated 4 years ago
- Getting started with java code auditing 代码审计入门的小项目☆930Feb 22, 2023Updated 3 years ago
- 使用windows api添加用户,可用于net无法使用时.分为nim版,c++版本,RDI版,BOF版。☆421Sep 29, 2021Updated 4 years ago
- 用于帮助企业内部快速扫描log4j2的jndi漏洞的burp插件☆212Apr 18, 2023Updated 3 years ago
- ☕️ Java Security,安全编码和代码审计☆1,754Mar 7, 2025Updated last year
- 通过hosts碰撞发现目标内部系统,扩大攻击面。☆46Aug 11, 2021Updated 4 years ago
- Java漏洞学习笔记 Deserialization Vulnerability☆943Jun 14, 2023Updated 2 years ago
- Flask 内存马☆313Mar 26, 2021Updated 5 years ago
- 用来存放平时写的一些net内存马,仅用于练手,需要可以自行修改☆91May 3, 2022Updated 4 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧☆754Apr 14, 2021Updated 5 years ago
- ZKar is a Java serialization protocol analysis tool implement in Go.☆651Apr 19, 2026Updated last month
- 红队行动中利用白利用、免杀、自动判断网络环境生成钓鱼可执行文件。☆368Jun 19, 2024Updated last year
- 项目监控工具 以及 Codeql 自动运行☆312Apr 13, 2023Updated 3 years ago
- 一款通过污点追踪发现Jsp webshell的工具(A tool to find Jsp Webshell through stain tracking)☆176Jan 4, 2022Updated 4 years ago
- 这个脚本主要提供对Exchange邮件服务器的账户爆破功能,集成了现有主流接口的爆破方式。☆340May 22, 2023Updated 3 years ago
- 分享几个直接可用的内存马,记录一下学习过程中看过的文章☆983Mar 23, 2022Updated 4 years ago