Alternatives and similar repositories for custom-bytecode-analyzer

Users that are interested in custom-bytecode-analyzer are comparing it to the libraries listed below

• frohoff / inspector-gadget
  Primitive tool for exploring/querying Java classes via the Tinkerpop Gremlin graph traversal language
  ☆108Updated 9 years ago
• breenmachine / JavaUnserializeExploits
  ☆133Updated 9 years ago
• yocontra / JMD
  Java bytecode analysis/deobfuscation tool
  ☆196Updated 7 years ago
• kantega / notsoserial
  Java Agent which mitigates deserialisation attacks by making certain classes unserializable
  ☆190Updated 9 years ago
• cdaller / security_taint_propagation
  Java taint propagation for java. Define tainted sources, sanitizer methods and sinks via aspects.
  ☆29Updated 7 years ago
• Semmle / SecurityQueries
  Deprecated: Please visit https://github.com/github/codeql instead.
  ☆80Updated 3 years ago
• faketime-java / faketime
  Fake currentTimeMillis() without class loader hacks
  ☆120Updated 4 years ago
• victims / maven-security-versions
  Identify vulnerable libraries in Maven dependencies
  ☆46Updated 2 years ago
• Contrast-Security-OSS / joogle
  A static analysis API for finding deserialization attack gadgets
  ☆38Updated 2 years ago
• Barro / java-afl
  Binary rewriting approach with fork server support to fuzz Java applications with afl-fuzz.
  ☆90Updated 7 years ago
• Contrast-Security-OSS / contrast-rO0
  A tiny Java agent that blocks attacks against unsafe deserialization
  ☆86Updated 8 years ago
• JReFrameworker / JReFrameworker
  A practical tool for bytecode manipulation and creating Managed Code Rootkits (MCRs) in the Java Runtime Environment
  ☆58Updated 5 years ago
• b09780978 / HITCON-Training-writeup
  Learn binary exploitation from angelboy's hitcon-training
  ☆37Updated 8 years ago
• jltxgcy / CVE_2017_7533_EXP
  ☆17Updated 6 years ago
• modzero / mod0javaFuzzingResults
  Result files from various fuzzing runs
  ☆16Updated 4 years ago
• zerothoughts / jndipoc
  Proof of concept showing how java byte code can be injected through InitialContext.lookup() calls
  ☆42Updated 9 years ago
• LyleMi / dom-vuln-db
  A collection of Browser DOM Vulnerabilities with PoCs
  ☆40Updated 6 years ago
• shawnmckinney / remote-code-execution-sample
  Demonstrate how usage of the Java Security Manager can prevent Remote Code Execution (RCE) exploits.
  ☆25Updated last year
• irsl / jackson-rce-via-spel
  An example project that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions
  ☆124Updated 7 years ago
• immunio / apache-struts2-CVE-2017-5638
  Demo Application and Exploit
  ☆35Updated 8 years ago
• plast-lab / native-scanner
  An analyzer of JNI code that matches native code information with Java code
  ☆23Updated 3 years ago
• lcatro / Kite
  Browser Fuzzing Framework ,浏览器Fuzzing 框架..
  ☆31Updated 9 years ago
• attekett / NodeFuzz
  ☆123Updated 4 years ago
• lcatro / My_PoC
  Collect some PoC that I writted .记录自己写过的PoC ..
  ☆22Updated 7 years ago
• schierlm / JavaPayload
  JavaPayload is a collection of pure Java payloads to be used for post-exploitation from pure Java exploits or from common misconfiguratio…
  ☆126Updated 9 months ago
• mbechler / ysoserial
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆12Updated 9 years ago
• dancezarp / TBDEx
  ☆86Updated 8 years ago
• aylhex / ApkSecurityAnalysis
  ApkSecurityAnalysis
  ☆65Updated 6 years ago
• retme7 / My-Slides
  My slides
  ☆89Updated 5 years ago
• zerothoughts / spring-jndi
  Proof of concept exploit, showing how to do bytecode injection through untrusted deserialization with Spring Framework 4.2.4
  ☆116Updated 6 years ago