keven1z / simpleIASTLinks
simpleIAST- 基于污点追踪的灰盒漏洞扫描工具。
☆84Updated this week
Alternatives and similar repositories for simpleIAST
Users that are interested in simpleIAST are comparing it to the libraries listed below
Sorting:
- Lessons for syntaxflow zero to hero☆49Updated 8 months ago
- java-web 自动化鉴权绕过☆301Updated 2 months ago
- 内存马查杀工具,尤其针对Agent型,原理是dump出JVM当前的class并进行字节码分析,并加入自动修复的功能☆154Updated 2 years ago
- proof-of-concept for generating Java deserialization payload | Proxy MemShell☆193Updated 11 months ago
- CVE-2022-2022☆69Updated last year
- A Java Route Collection Tool☆97Updated 10 months ago
- 一个集合了多种语言的实战化Web靶场 | A practical Web shooting range that integrates multiple languages☆73Updated 2 months ago
- 关于内存马的学习研究支持新手从0到1,从内存马原理,内存马植入 内存马检测 到内存马防御与内存马应急以及内存马查杀全系列java内存马/php/.net/c++/python 喜欢可以点个star 后续持续更新☆116Updated last year
- 强化学习 + 端口扫描☆120Updated 3 months ago
- javaeasyscanner - 富婆系列,代码审计辅助工具,致力于解放大脑,方便双手☆272Updated 11 months ago
- 记录一些代码审计过的源码☆146Updated 3 months ago
- Small & Fast Vulnerability Scanner Engine based on XRAY YAML Rule | 基于 XRAY YAML 规则的超轻量快速漏洞扫描引擎 | 基于 ANTLR 实现语法分析和完整的 XRAY YAML 规则实现 | 简单…☆160Updated 8 months ago
- 不那么一样的 Java Agent 内存马☆263Updated last year
- 存储桶遍历漏洞利用脚本☆112Updated last year
- ALLINONE framework and technology detect lib☆177Updated 3 weeks ago
- 无需文件落地Agent内存马生成器☆237Updated last year
- Java web路由内存分析工具☆432Updated last week
- Godzilla插件|内存马|Suo5内存代理|jmg for Godzilla☆223Updated 11 months ago
- 获取 alibaba druid 一些 sessions , sql , urls☆273Updated 2 months ago
- fastjson 80 远程代码执行漏洞复现☆194Updated 2 years ago
- 一款基 于Knife4j 的 Swagger 接口自动化测试未授权工具☆111Updated last year
- A Go library for generating Java deserialization payloads.☆155Updated 8 months ago
- Java表达式语句生成器☆190Updated last year
- burpsuite passive-scan-client 插件持续维护分支 v2024☆76Updated 9 months ago
- 一款Java内存马生成、测试工具,搭配@ax1sX的MemShell食用。☆224Updated 11 months ago
- 自己积累的一些Java反序列化利用链☆89Updated 2 years ago
- Apache RocketMQ 远程代码执行漏洞(CVE-2023-33246) Exploit☆80Updated 2 years ago
- 命令执行不回显但DNS协议出网的命令回显场景解决方案(修改为使用ceye接收请求,添加自定义DNS服务器)☆291Updated last year
- 本工具为jeecg框架漏洞利用工具非jeecg-boot!☆177Updated 9 months ago
- 目标是成为当下最完善的API挖掘工具,实现自动提取响应敏感信息、URI信息,并且对URI进行自动|手动递归检查☆211Updated 3 weeks ago