keven1z / simpleIAST
simpleIAST- 基于污点追踪的灰盒漏洞扫描工具。
☆75Updated last month
Alternatives and similar repositories for simpleIAST:
Users that are interested in simpleIAST are comparing it to the libraries listed below
- Lessons for syntaxflow zero to hero☆48Updated 6 months ago
- A Java Route Collection Tool☆91Updated 7 months ago
- java-web 自动化鉴权绕过☆262Updated 6 months ago
- proof-of-concept for generating Java deserialization payload | Proxy MemShell☆185Updated 9 months ago
- 无需文件落地Agent内存马生成器☆223Updated 9 months ago
- 关于内存马的学习研究支持新手从0到1,从内存马原理,内存马植入 内存马检测 到内存马防御与内存马应急以及内存马查杀全系列java内存马/php/.net/c++/python 喜欢可以点个star 后续持续更新☆106Updated 11 months ago
- 一个集合了多种语言的实战化Web靶场 | A practical Web shooting range that integrates multiple languages☆71Updated 2 weeks ago
- A Go library for generating Java deserialization payloads.☆155Updated 6 months ago
- 强化学习 + 端口扫描☆116Updated last month
- 内存马查杀工具,尤其针对Agent型,原理是dump出JVM当前的class并进行字节码分析,并加入自动修复的功能☆147Updated last year
- 一款让你不只在dubbo-sample、vulhub或者其他测试环境里检测和利用成功的Apache Dubbo 漏洞检测工具。☆167Updated last year
- fastjson 80 远程代码执行漏洞复现☆191Updated 2 years ago
- 记录一些代码审计过的源码☆145Updated 3 weeks ago
- Java表达式语句生成器☆184Updated last year
- Godzilla插件|内存马|Suo5内存代理|jmg for Godzilla☆215Updated 9 months ago
- 自己积累的一些Java反序列化利用链☆87Updated 2 years ago
- 检测查杀java内存马☆76Updated last year
- Small & Fast Vulnerability Scanner Engine based on XRAY YAML Rule | 基于 XRAY YAML 规则的超轻量快速漏洞扫描引擎 | 基于 ANTLR 实现语法分析和完整的 XRAY YAML 规则实现 | 简单…☆156Updated 6 months ago
- 大模型学习导航☆96Updated this week
- Some ReadObject Sink With JDBC☆205Updated 10 months ago
- 不那么一样的 Java Agent 内存马☆263Updated last year
- JNDI注入测试工具内存马版本(增加了注入内存马模块)☆115Updated last year
- 用java实现构造openwire协议,利用activeMQ < 5.18.3 RCE 回显利用 内存马注入☆267Updated last year
- evil-mysql-server is a malicious database written to target jdbc deserialization vulnerabilities and requires ysoserial.☆87Updated 2 years ago
- 分割小工具,可分割木马,一键生成写入、合并、追加命令☆163Updated last year
- java实现反序列化建立socket连接☆58Updated 2 months ago
- CVE-2022-25845(fastjson1.2.80) exploit in Spring Env!☆88Updated 4 months ago
- rmi打内存马工具,适用于目标用不了ldap的情况☆253Updated last year
- 获取 alibaba druid 一些 sessions , sql , urls☆263Updated 2 years ago
- 本工具的定位是快速生成Java安全相关的Payload,如内存马、反序列化链、JNDI url、Fastjson等,动态生成相关Payload,并附带相应的文档。☆93Updated last month