ice-doom / CodeQLRule
个人使用CodeQL编写的一些规则
☆169Updated 2 years ago
Related projects: ⓘ
- 一款通过污点追踪发现Jsp webshell的工具(A tool to find Jsp Webshell through stain tracking)☆174Updated 2 years ago
- Lessons for syntaxflow zero to hero☆36Updated this week
- Java表达式语句生成器☆176Updated 11 months ago
- ☆171Updated 2 weeks ago
- RASP测试靶场☆139Updated last year
- 项目监控工具 以及 Codeql 自动运行☆307Updated last year
- Some ReadObject Sink With JDBC☆177Updated 4 months ago
- 当死去的记忆突然开始攻击我,我终于想起了我还写过一款十分十分垃圾的 rasp 靶场。☆78Updated 2 years ago
- ☆210Updated this week
- fastjson 80 远程代码执行漏洞复现☆178Updated 2 years ago
- A neo4j procedure for tabby☆111Updated 3 months ago
- SpringBoot Actuator未授权自动化利用,支持信息泄漏/RCE☆233Updated 3 years ago
- 基于 jdwp-shellifier 的进阶JDWP漏洞利用脚本(动态执行Java/Js代码并获得回显)☆212Updated 3 months ago
- 内存马学习☆168Updated 2 years ago
- Auto Code Audit Framework for Java☆97Updated 2 years ago
- ☆95Updated 10 months ago
- fastjson不出网利用、c3p0☆245Updated 3 years ago
- Java漏洞分析汇合☆140Updated 2 years ago
- 批量检查目标是否为cdn☆139Updated 3 years ago
- 简单实现的 Java RASP☆34Updated 3 years ago
- 通过正则搜索、批量反编译特定Jar包中的class名称☆302Updated 2 years ago
- Java web路由内存分析工具☆411Updated 3 months ago
- 鹏 RocB - Java代码审计IDEA插件 SAST☆146Updated 3 years ago
- ☆132Updated this week
- ☆161Updated this week
- java-web 自动化鉴权绕过☆203Updated last month
- Compatible with xray and nuclei poc framework☆188Updated last year
- Java Js Engine Payloads All in one☆255Updated last year
- 杀内存马的工具,欢迎code review,提出更好的意见☆181Updated 8 months ago
- 基于AST的JSONP劫持漏洞自动化挖掘☆94Updated 4 years ago