Java静态代码安全审计工具,使用JavaParser项目做语法分析,计划支持常见的Web漏洞与组件漏洞
☆21Sep 20, 2021Updated 4 years ago
Alternatives and similar repositories for XVulnFinder
Users that are interested in XVulnFinder are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- 一个java代码审计辅助工具☆29Nov 2, 2022Updated 3 years ago
- 基于Java ASM技术和GadgetInspector的原理,尝试实现一个自动Java代码审计工具。目前做到了可控参数分析和数据流跟踪分析☆39Oct 26, 2021Updated 4 years ago
- 针对于Spring框架的自动Java代码审计工具☆37Jan 24, 2022Updated 4 years ago
- study_summary☆10Aug 8, 2022Updated 3 years ago
- 又一个Java Web代码审计工具☆100May 7, 2018Updated 8 years ago
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- 整理的一些hw前期准备工作 以及针对攻击者的溯源思路 水平较菜,如有错误或者遗漏的地方还请各位�指正 参考资料较多 动态 IP 移动基站 代理池IP(谷歌、百度 是否有处于代理池C段) 国外扫描傀儡机(被标记时间普遍较久、扫描目标众多) 动态域名服务商(如花生壳、公云等) …☆21Apr 3, 2021Updated 5 years ago
- JEECMS FreeMarker-RCE☆12Nov 12, 2021Updated 4 years ago
- 基于JavaParser的代码调用链分析,可以用于分析Java代码的方法调用链,进行代码质量管理、监控。欢迎Fork、Star☆19Nov 16, 2020Updated 5 years ago
- Rexo-UI - VueJS & HTML 网站/后台管理模板☆10Nov 1, 2023Updated 2 years ago
- this_my_ctf☆18Nov 17, 2021Updated 4 years ago
- 鹏 RocB - Java代码审计IDEA插件 SAST☆149Sep 16, 2021Updated 4 years ago
- java代码审计笔记☆22Jun 8, 2024Updated last year
- JNDI/LDAP注入利用工具,对命令进行两种编码,支持多种绕过高版本JDK的方式(参考大佬代码造的轮子)☆43Dec 22, 2021Updated 4 years ago
- java UI 插件化漏洞扫描工具☆19Apr 14, 2020Updated 6 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- ☆11Jan 16, 2018Updated 8 years ago
- <a href="sumsec.me"><img src="https://readme-typing-svg.demolab.com?font=Fira+Code&size=24&pause=1000&color=FDFDFD&background=13797800&ce…☆59Updated this week
- ☆10May 6, 2021Updated 5 years ago
- ☆19Jul 6, 2023Updated 2 years ago
- java-callgraph-spoon,使用静态分析工具spoon构造方法调用图callgraph ,源代码方法级别☆15Oct 31, 2023Updated 2 years ago
- 一个burpsuite插件,用于被动检测可能存在的XSS漏洞的请求。后续将完善对于可以请求的xss探针、xss攻击以及DOM型xss检测。☆16Dec 26, 2018Updated 7 years ago
- java 代码审计学习靶场☆120Jan 11, 2024Updated 2 years ago
- 简单实现的 Java RASP☆36Oct 14, 2020Updated 5 years ago
- ☆13Aug 31, 2024Updated last year
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- 用于静态分析Java工程的调用链,对比新老分支代码的差异,并给出受到影响的接口作为建议,通俗一点地说:能够通过一段修改过的代码,推断出测试要回归哪些接口用例☆40Jun 2, 2023Updated 2 years ago
- A static analysis tool for Java programs, based on the theory of code property graphs.☆20Mar 27, 2023Updated 3 years ago
- 汽车销售管理系统--可二次开发☆13Nov 16, 2022Updated 3 years ago
- 动态链接库加载工具☆21Jan 26, 2022Updated 4 years ago
- Java 设计模式梳理☆36Jun 20, 2022Updated 3 years ago
- CSRF Scanner Extension for Burp Suite Pro☆20Jun 5, 2018Updated 7 years ago
- Simple block chain toy☆14Jul 2, 2018Updated 7 years ago
- 一款简单的Web漏洞扫描器(学习专用)☆11Jul 5, 2024Updated last year
- Jupyter notebooks for the book "Deep Learning with Python"☆11Aug 24, 2020Updated 5 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- JavaWeb漏洞审计工具,构建方法调用链并模拟栈帧进行分析☆336Jun 3, 2023Updated 2 years ago
- 静态程序分析工具 主要生成方法的CFG和.java文件的AST☆136Jul 12, 2023Updated 2 years ago
- Java编写的C语言词法分析器,Java编写的C语言词法分析器 120号为关键字,用下标表示,i+1就是其机器码; 2140号为操作符,用下标表示,i+21就是其机器码; 41~60号为分界符, 用下标表示,i+41就是其机器码; 用户自定义的标识符,其机器码为51; 常…☆12Dec 25, 2017Updated 8 years ago
- SplatCo: Structure-View Collaborative Gaussian Splatting for Detail-Preserving Large-Scale Unbounded Scene Rendering☆42Dec 22, 2025Updated 5 months ago
- This use case shows how Connext DDS can be used by Autonomous Vehicle developers to leverage RTI’s extensive experience with autonomous r…☆15Jul 18, 2024Updated last year
- JAVA IAST Example☆49Dec 13, 2021Updated 4 years ago
- The function of the tool is to inject JNDI through LDAP☆29Dec 21, 2021Updated 4 years ago