j5s / XVulnFinderView external linksLinks
Java静态代码安全审计工具,使用JavaParser项目做语法分析,计划支持常见的Web漏洞与组件漏洞
☆21Sep 20, 2021Updated 4 years ago
Alternatives and similar repositories for XVulnFinder
Users that are interested in XVulnFinder are comparing it to the libraries listed below
Sorting:
- 一个java代码审计辅助工具☆29Nov 2, 2022Updated 3 years ago
- 基于Java ASM技术和GadgetInspector的原理,尝试实现一个自动Java代码审计工具。目前做到了可控参数分析和数据流跟踪分析☆39Oct 26, 2021Updated 4 years ago
- study_summary☆10Aug 8, 2022Updated 3 years ago
- 针对于Spring框架的自动Java代码审计工具☆37Jan 24, 2022Updated 4 years ago
- 又一个Java Web代码审计工具☆100May 7, 2018Updated 7 years ago
- this_my_ctf☆17Nov 17, 2021Updated 4 years ago
- ☆19Jul 6, 2023Updated 2 years ago
- JNDI/LDAP注入利用工具,对命令进行两种编码,支持多种绕过高版本JDK的方式(参考大佬代码造的轮子)☆44Dec 22, 2021Updated 4 years ago
- 动态链接库加载工具☆20Jan 26, 2022Updated 4 years ago
- IDA (sort of) headless☆27Feb 17, 2024Updated last year
- <a href="sumsec.me"><img src="https://readme-typing-svg.demolab.com?font=Fira+Code&size=24&pause=1000&color=FDFDFD&background=13797800&ce…☆54Updated this week
- JavaWeb漏洞审计工具,构建方法调用链并模拟栈帧进行分析☆334Jun 3, 2023Updated 2 years ago
- 个人使用CodeQL编写的一些规则☆180Mar 30, 2022Updated 3 years ago
- java 代码审计学习靶场☆119Jan 11, 2024Updated 2 years ago
- The function of the tool is to inject JNDI through LDAP☆28Dec 21, 2021Updated 4 years ago
- 企业级五金Saas孵化电商项目-直链网☆10Dec 16, 2022Updated 3 years ago
- 简单实现的 Java RASP☆35Oct 14, 2020Updated 5 years ago
- 静态程序分析工具 主要生成方法的CFG和.java文件的AST☆132Jul 12, 2023Updated 2 years ago
- Java代码审计学习笔记☆13Dec 20, 2024Updated last year
- Exchange ProxyRelay POC☆37Oct 20, 2022Updated 3 years ago
- 通达OA系列检测EXP☆35Nov 23, 2021Updated 4 years ago
- java decompile audit tools☆227Oct 9, 2022Updated 3 years ago
- Small POC for process ghosting☆40Feb 1, 2022Updated 4 years ago
- ☆11Feb 25, 2019Updated 6 years ago
- Original hVNC has been recoded to work with all version of windows above XP. Thanks to the original author for this wonderful tool.☆10Oct 13, 2021Updated 4 years ago
- 利用shiro反序列化注入冰蝎内存马☆37Dec 19, 2021Updated 4 years ago
- 通过网络资产线索(如:域名,IP地址,资产名称等),利用FOFA访问网络空间测绘数据☆11Apr 23, 2024Updated last year
- 实现轻量级RPC框架,网络通信框架Netty、注册中心(Zookeeper、Nacos)、Java基础(注解、反射、多线程、Future、SPI 、动态代理)、自定义传输协议、多种序列化(ProtoBuf / Kyro / Hessian)、Gzip压缩、轮询、随机、一致性…☆14May 7, 2022Updated 3 years ago
- 攻击Java Web应用-[Java Web安全]☆12Dec 10, 2019Updated 6 years ago
- ☆11Jan 6, 2024Updated 2 years ago
- 安全API接口测试Demo,围绕时间戳,ticket,签名三个参数☆12Jan 5, 2021Updated 5 years ago
- Java漏洞调试分析集合☆91Mar 11, 2024Updated last year
- Java安全路上的学习笔记☆84Feb 24, 2023Updated 2 years ago
- 通过使用Ollama部署deepseek-r1大模型,使用Spring Boot + Spring AI来调用deepseek-r1模型的API 实现本地完全免费API使用☆18Feb 14, 2025Updated last year
- 可能是全网最方便的水印图床,支持宝塔一键部署、也支持Docker版部署至服务器或本地电脑☆10Jul 16, 2019Updated 6 years ago
- MuddyWater C2 framework research☆12Jun 28, 2023Updated 2 years ago
- ☆13Aug 25, 2021Updated 4 years ago
- Nine-Chapters: AwakenCN组织的数据结构与算法篇,强化数据结构与算法的基础知识,从而达到学以致用的目的,其次就是在跳槽可以拿到更好的offer。☆10Sep 11, 2020Updated 5 years ago
- An example of how a driver can register a handle creation callback.☆16Jun 12, 2023Updated 2 years ago