jimocode/CodeInspector external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

jimocode/CodeInspector

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/jimocode/CodeInspector)

Close

jimocode / CodeInspectorView on GitHubMore

• External links
• Readme badge

基于Java ASM技术和GadgetInspector的原理，尝试实现一个自动Java代码审计工具。目前做到了可控参数分析和数据流跟踪分析

☆39Oct 26, 2021Updated 4 years ago

Alternatives and similar repositories for CodeInspector

Users that are interested in CodeInspector are comparing it to the libraries listed below

• j5s / SpringInspector

  View on GitHub
  针对于Spring框架的自动Java代码审计工具
  ☆37Jan 24, 2022Updated 4 years ago
• j5s / XVulnFinder

  View on GitHub
  Java静态代码安全审计工具，使用JavaParser项目做语法分析，计划支持常见的Web漏洞与组件漏洞
  ☆21Sep 20, 2021Updated 4 years ago
• iiiusky / java_iast_example

  View on GitHub
  JAVA IAST Example
  ☆49Dec 13, 2021Updated 4 years ago
• LaNyer640 / java_asm_parse

  View on GitHub
  一个java代码审计辅助工具
  ☆29Nov 2, 2022Updated 3 years ago
• BytecodeDL / soot-fact-generator

  View on GitHub
  generate facts from bytecode (source is https://github.com/plast-lab/doop-mirror/tree/master/generators)
  ☆23Nov 24, 2024Updated last year
• iflody / codeql-workshop

  View on GitHub
  ☆12Aug 5, 2021Updated 4 years ago
• feihong-cs / jre8u20_gadget

  View on GitHub
  jre8u20 gadget
  ☆34May 23, 2021Updated 4 years ago
• BytecodeDL / ByteCodeDL

  View on GitHub
  A declarative static analysis tool for jvm bytecode based Datalog like CodeQL
  ☆345Jan 6, 2024Updated 2 years ago
• SiJiDo / JAVA-Serialize-vuln

  View on GitHub
  java反序列化漏洞笔记
  ☆24Apr 6, 2019Updated 6 years ago
• su18 / Xstream

  View on GitHub
  payloads
  ☆15Mar 17, 2021Updated 5 years ago
• 4ra1n / code-inspector

  View on GitHub
  JavaWeb漏洞审计工具，构建方法调用链并模拟栈帧进行分析
  ☆335Jun 3, 2023Updated 2 years ago
• fengupupup / RocB

  View on GitHub
  鹏 RocB - Java代码审计IDEA插件 SAST
  ☆151Sep 16, 2021Updated 4 years ago
• dsogroup / DevSecOps

  View on GitHub
  开发和安全和运营：DevSecOps-Software development (Dev) and Security (Sec) and IT operations (Ops).
  ☆27Apr 13, 2024Updated last year
• twosmi1e / Static-Analysis-and-Automated-Code-Audit

  View on GitHub
  静态分析及代码审计自动化相关资料收集
  ☆298Jul 29, 2022Updated 3 years ago
• luelueking / jvm-sandbox-rasp

  View on GitHub
  一个基于jvm-sandbox高度定制化rasp
  ☆58Sep 28, 2023Updated 2 years ago
• woodpecker-appstore / rmi-deserialization-vuldb

  View on GitHub
  Java RMI反序列化漏洞插件
  ☆49Jun 11, 2021Updated 4 years ago
• 7BitsTeam / LearningAgentShell

  View on GitHub
  7bits安全团队-《Java安全-记一次实战使用memoryshell》代码样例
  ☆19Nov 13, 2022Updated 3 years ago
• threedr3am / gadgetinspector

  View on GitHub
  一个利用ASM对字节码进行污点传播分析的静态代码审计应用（添加了大量代码注释，适合大家进行源码学习）。也加入了挖掘Fastjson反序列化gadget chains和SQLInject（JdbcTemplate、MyBatis、JPA、Hibernate、原生jdbc等）静…
  ☆458Mar 24, 2022Updated 3 years ago
• bluE0a / java-memshell-scanner

  View on GitHub
  添加Connector内存马与ws内存马检测逻辑
  ☆16Oct 9, 2022Updated 3 years ago
• ZhuriLab / Yi

  View on GitHub
  项目监控工具 以及 Codeql 自动运行
  ☆313Apr 13, 2023Updated 2 years ago
• ice-doom / CodeQLRule

  View on GitHub
  个人使用CodeQL编写的一些规则
  ☆180Mar 30, 2022Updated 3 years ago
• 5huai / POC-Test

  View on GitHub
  Java代码审计案例
  ☆24May 16, 2021Updated 4 years ago
• AntSwordProject / AntSword-Csharp-Template

  View on GitHub
  ☆20Mar 4, 2023Updated 3 years ago
• k6ymaker / NJU-static-program-analysis-node

  View on GitHub
  ☆11Mar 19, 2022Updated 4 years ago
• Draven996 / jniwebshell

  View on GitHub
  ☆42Jul 23, 2019Updated 6 years ago
• secure-software-engineering / SPDS-experiments

  View on GitHub
  ☆11Oct 10, 2018Updated 7 years ago
• ATNX / javaweb-rasp

  View on GitHub
  ☆38Oct 26, 2021Updated 4 years ago
• safe6Sec / CodeqlNote

  View on GitHub
  Codeql学习笔记
  ☆899Apr 25, 2022Updated 3 years ago
• LandGrey / spring-boot-upload-file-lead-to-rce-tricks

  View on GitHub
  spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧
  ☆754Apr 14, 2021Updated 4 years ago
• su18 / JDBC-Attack

  View on GitHub
  JDBC Connection URL Attack
  ☆441Sep 10, 2021Updated 4 years ago
• jas502n / CVE-2019-2890

  View on GitHub
  CVE-2019-2890 WebLogic 反序列化RCE漏洞
  ☆44Dec 8, 2019Updated 6 years ago
• BeichenDream / Godzilla-Plugin-Store

  View on GitHub
  ☆37Aug 25, 2020Updated 5 years ago
• jvm-rasp / jrasp-agent

  View on GitHub
  专注于JVM的运行时防御系统RASP
  ☆296Jun 14, 2024Updated last year
• 5wimming / gadgetinspector

  View on GitHub
  利用链、漏洞检测工具
  ☆373Jul 31, 2024Updated last year
• 0neOfU4 / JavaCodeAudit

  View on GitHub
  本项目是记录自己在Java代码审计过程中遇到的一些优秀文章内容，以及涉及到的Java项目源文件，汇总起来方便初学者下载分析。
  ☆31Jun 14, 2022Updated 3 years ago
• flowerwind / AutoGenerateXalanPayload

  View on GitHub
  cve-2022-34169 延伸出的Jdk Xalan的payload自动生成工具，可根据不同的Jdk生成出其所对应的xslt文件
  ☆93Jan 17, 2023Updated 3 years ago
• ydnzol / memshell

  View on GitHub
  Tomcat 冰蝎内存马。
  ☆214Sep 14, 2020Updated 5 years ago
• Fraunhofer-AISEC / codyze

  View on GitHub
  Codyze is a static analyzer for Java, C, C++ based on code property graphs
  ☆91Jan 22, 2025Updated last year
• kyo-w / router-router

  View on GitHub
  Java web路由内存分析工具
  ☆438May 22, 2025Updated 9 months ago