j5s/SpringInspector

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/j5s/SpringInspector)

j5s / SpringInspector

针对于Spring框架的自动Java代码审计工具

☆37

Alternatives and similar repositories for SpringInspector

Users that are interested in SpringInspector are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

jimocode / CodeInspector
View on GitHub
基于Java ASM技术和GadgetInspector的原理，尝试实现一个自动Java代码审计工具。目前做到了可控参数分析和数据流跟踪分析
☆39Oct 26, 2021Updated 4 years ago
safe6Sec / JavaDeserialization
View on GitHub
java反序列化学习笔记
☆16Nov 17, 2021Updated 4 years ago
mtxiaowangzi / CAFJE
View on GitHub
又一个Java Web代码审计工具
☆100May 7, 2018Updated 7 years ago
yhy0 / JavaSerializeDemo
View on GitHub
Java反序列化漏洞学习
☆14Jul 1, 2021Updated 4 years ago
j5s / XVulnFinder
View on GitHub
Java静态代码安全审计工具，使用JavaParser项目做语法分析，计划支持常见的Web漏洞与组件漏洞
☆21Sep 20, 2021Updated 4 years ago
Proton VPN Special Offer - Get 70% off • Ad
Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
ffffffff0x / JVWA
View on GitHub
java 代码审计学习靶场
☆120Jan 11, 2024Updated 2 years ago
ax1sX / Automation-in-Java-Security
View on GitHub
☆10Jul 21, 2022Updated 3 years ago
0neOfU4 / JavaCodeAudit
View on GitHub
本项目是记录自己在Java代码审计过程中遇到的一些优秀文章内容，以及涉及到的Java项目源文件，汇总起来方便初学者下载分析。
☆31Jun 14, 2022Updated 3 years ago
lz520520 / java-object-searcher
View on GitHub
☆22Feb 21, 2025Updated last year
xiaopan233 / GenerateNoHard
View on GitHub
本工具的定位是快速生成Java安全相关的Payload，如内存马、反序列化链、JNDI url、Fastjson等，动态生成相关Payload，并附带相应的文档。
☆94Feb 25, 2025Updated last year
Ormicron / bcelkit
View on GitHub
BCEL编解码工具
☆16Aug 3, 2022Updated 3 years ago
moyuwa / FileMonitorPlus
View on GitHub
文件变化实时监控工具Plus版(代码审计/黑盒/白盒审计辅助工具)，基于项目修改 https://github.com/TheKingOfDuck/FileMonitor
☆11Jun 28, 2020Updated 5 years ago
Tr0e / JavaSinkTracer
View on GitHub
基于Python javalang库开发的一款轻量级Java源代码审计工具，by Tr0e
☆73Oct 23, 2025Updated 5 months ago
SiJiDo / JAVA-Serialize-vuln
View on GitHub
java反序列化漏洞笔记
☆24Apr 6, 2019Updated 7 years ago
DigitalOcean Gradient AI Platform • Ad
Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
guchangan1 / CodeVulnScan
View on GitHub
CodeVulnScan 是一款基于正则表达式的代码安全审计工具，专为红队成员快速定位sink设计。它能够快速扫描目标代码库，定位潜在的漏洞 Sink 点，提升代码审计效率。
☆65Feb 11, 2026Updated last month
passer-W / snakeyaml-memshell
View on GitHub
springboot跨线程注入内存马
☆123Apr 10, 2022Updated 3 years ago
sssmmmwww / wxmini-security-audit
View on GitHub
微信小程序全自动安全审计 Skill，基于 Claude Code Agent Teams。7 Agent 协作，覆盖敏感信息、API接口、加密分析、漏洞分析四大维度。采用脚本+LLM双层架构，脚本保证覆盖率，LLM保证准确率。
☆87Updated this week
1u0Hun / SAReport
View on GitHub
渗透测试自动化报告平台
☆16Nov 22, 2022Updated 3 years ago
prepar-z / inspectorz
View on GitHub
Java 代码审计 idea 插件
☆26Mar 8, 2025Updated last year
fengupupup / RocB
View on GitHub
鹏 RocB - Java代码审计IDEA插件 SAST
☆151Sep 16, 2021Updated 4 years ago
woodpecker-appstore / rmi-deserialization-vuldb
View on GitHub
Java RMI反序列化漏洞插件
☆49Jun 11, 2021Updated 4 years ago
minhangxiaohui / JAVA_memshells
View on GitHub
java 内存马系列实现（Servlets 、组件、Agent）
☆10Mar 7, 2022Updated 4 years ago
K4ptor / CVE-2023-22515
View on GitHub
Confluence Unauthorized Administrator User Addition Exploitation Script
☆25Mar 26, 2026Updated 2 weeks ago
1-Click AI Models by DigitalOcean Gradient • Ad
Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
turn1tup / JvmRaspBypass
View on GitHub
☆21Oct 7, 2022Updated 3 years ago
Janhsu / DockerAPITool
View on GitHub
DockerRemoteAPI未授权访问(2375端口)利用工具，支持容器逃逸
☆67Dec 29, 2024Updated last year
7hang / --Java
View on GitHub
代码审计知识点整理-Java
☆531Jun 15, 2020Updated 5 years ago
p1n93r / javasec
View on GitHub
Java安全相关，目前主要是CC链研究
☆10Sep 1, 2022Updated 3 years ago
zxcvbn001 / CodeReview
View on GitHub
代码审计总结
☆86Sep 1, 2021Updated 4 years ago
hosch3n / FastjsonVulns
View on GitHub
[fastjson 1.2.80] CVE-2022-25845 aspectj fileread & groovy remote classload
☆91Sep 2, 2022Updated 3 years ago
j3ers3 / Hello-Java-Sec
View on GitHub
☕️ Java Security，安全编码和代码审计
☆1,743Mar 7, 2025Updated last year
ZhuriLab / Yi
View on GitHub
项目监控工具以及 Codeql 自动运行
☆314Apr 13, 2023Updated 2 years ago
achuna33 / FuckMemshell
View on GitHub
内存马持久化
☆59May 19, 2022Updated 3 years ago
Proton VPN Special Offer - Get 70% off • Ad
Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
suizhibo / Tao
View on GitHub
Tao（道）一款用于java语言函数调用关系生成的工具，致力于提高java代码审计效率。
☆11Jul 2, 2024Updated last year
nOnE-team / YQScan
View on GitHub
语雀敏感信息泄露搜索工具
☆13Jan 20, 2023Updated 3 years ago
Mr-xn / TencentSecuritySalon
View on GitHub
腾讯安全沙龙一二三期PPT集合
☆19May 24, 2025Updated 10 months ago
lalajun / Fastjson_Deserialize
View on GitHub
Fastjson反序列化环境（一步步）
☆14Jun 17, 2022Updated 3 years ago
i11us0ry / tools-gophish
View on GitHub
gophish批量操作，适用于大批量钓鱼演练
☆31Apr 5, 2021Updated 5 years ago
dean2021 / java_security_book
View on GitHub
记录整理日常java安全分析代码
☆14Dec 25, 2018Updated 7 years ago
ReAbout / audit-java
View on GitHub
Java代码审计手册，关注于漏洞挖掘而非利用【持续更新】
☆200Nov 21, 2024Updated last year