javaweb-rasp / javaweb-vulnView external linksLinks
RASP测试靶场
☆192Dec 22, 2022Updated 3 years ago
Alternatives and similar repositories for javaweb-vuln
Users that are interested in javaweb-vuln are comparing it to the libraries listed below
Sorting:
- JAVA 安全靶场,IAST 测试用例,JAVA漏洞复现,代码审计,SAST测试用例,安全扫描(主动和被动),JAVA漏洞靶场,RASP测试用例 ; Java Security Testbed, IAST Test Cases, Java Vulnerability R…☆270Sep 6, 2024Updated last year
- Java漏洞靶场☆380Dec 25, 2023Updated 2 years ago
- java 代码审计学习靶场☆119Jan 11, 2024Updated 2 years ago
- Common Exploitation Techniques for Java RCE Vulnerabilities in Real-World Scenarios | 实战场景较通用的 Java Rce 相关漏洞的利用方式☆545Mar 6, 2025Updated 11 months ago
- ☕️ Java Security,安全编码和代码审计☆1,722Mar 7, 2025Updated 11 months ago
- JavaWeb MemoryShell Inject/Scan/Killer/Protect Research & Exploring☆651Jun 25, 2021Updated 4 years ago
- ☆1,048Jun 6, 2025Updated 8 months ago
- spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧☆753Apr 14, 2021Updated 4 years ago
- JDBC Attack Tricks☆154Sep 3, 2023Updated 2 years ago
- 当死去的记忆突然开始攻击我,我终于想起了我还写过一款十分十分垃圾的 rasp 靶场。☆87Jul 21, 2022Updated 3 years ago
- 不那么一样的 Java Agent 内存马☆289Nov 27, 2023Updated 2 years ago
- Java漏洞分析汇合☆142Dec 14, 2021Updated 4 years ago
- ☆21Oct 7, 2022Updated 3 years ago
- JNDI在java高版本的利用工具,FUZZ利用链☆597Oct 8, 2022Updated 3 years ago
- 专注于JVM的运行时防御系统RASP☆295Jun 14, 2024Updated last year
- 收集内存马打入方式☆506May 20, 2022Updated 3 years ago
- ☆198Sep 26, 2024Updated last year
- java内存对象搜索辅助工具☆822Sep 23, 2022Updated 3 years ago
- 拿来即用的Tomcat7/8/9/10版本Listener/Filter/Servlet内存马,支持注入CMD内存马和冰蝎内存马☆511Aug 31, 2022Updated 3 years ago
- Apache Dubbo漏洞测试Demo及其POC☆65Mar 27, 2023Updated 2 years ago
- 某软最新公开gadgegt,新加入不出网利用。☆89Sep 6, 2024Updated last year
- 一款专注于 Java 主流 Web 中间件的内存马快速生成工具,致力于简化安全研究人员和红队成员的工作流程,提升攻防效率☆1,338Feb 8, 2026Updated last week
- 检测查杀java内存马☆127Dec 5, 2023Updated 2 years ago
- Java web common vulnerabilities and security code which is base on springboot and spring security☆2,645Dec 2, 2024Updated last year
- JAVA 漏洞靶场 (Vulnerability Environment For Java)☆481Jul 15, 2021Updated 4 years ago
- a rep for documenting my study, may be from 0 to 0.1☆2,248Nov 10, 2025Updated 3 months ago
- 一款Java内存马生成、测试工具,搭配@ax1sX的MemShell食用。☆260Jul 4, 2024Updated last year
- A list for Web Security and Code Audit☆1,212Dec 3, 2024Updated last year
- 80+ Gadgets(30 More than ysoserial). JNDI-Injection-Exploit-Plus is a tool for generating workable JNDI links and provide background serv…☆867Jun 24, 2024Updated last year
- java代码审计学习笔记☆678Feb 24, 2020Updated 5 years ago
- 项目监控工具 以及 Codeql 自动运行☆313Apr 13, 2023Updated 2 years ago
- 解决FastJson、Jackson、Log4j2、原生JNDI注入漏洞的高版本JDKBypass利用,探测本地可用反序列化gadget达到命令执行、回显命令执行、内存马注入☆770Jan 26, 2022Updated 4 years ago
- Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势☆1,404Jan 18, 2022Updated 4 years ago
- Catcher(捕手) 重点系统指纹漏洞验证工具,适用于外网打点,资产梳理漏洞检查。☆317Feb 18, 2025Updated last year
- 闭源系统半自动漏洞挖掘工具,针对 jar/war/zip 进行静态代码分析,输出从source到sink的可达路径。LLM将验证路径可达性,并根据上下文给出该路径可信分数☆502Jan 12, 2026Updated last month
- 一款让你不只在dubbo-sample、vulhub或者其他测试环境里检测和利用成功的Apache Dubbo 漏洞检测工具。☆171Aug 9, 2023Updated 2 years ago
- rmi打内存马工具,适用于目标用不了ldap的情况☆254Jul 12, 2023Updated 2 years ago
- 集权设施扫描器☆444Nov 23, 2023Updated 2 years ago
- 让"WAF绕过"变得简单☆433Jan 26, 2025Updated last year