Alternatives and similar repositories for Java-CVE-Lists:

Users that are interested in Java-CVE-Lists are comparing it to the libraries listed below

• l3yx / Java-RASP-Research-Env
  之前方便自己研究RASP原理和绕过时顺手写的，用于快速启动和重置RASP环境
  ☆55Updated 3 months ago
• wh1t3p1g / tabby-vul-finder
  A vul-finder for loading CPG and automated finding vul-call-chains
  ☆37Updated 4 months ago
• trganda / atkjdbc
  Write Up Code of HITB Sec-Sin 2021 Make JDBC Attacks Brilliant Again
  ☆11Updated last year
• KpLi0rn / DeserializeAll
  一个简单的批量反编译jar包的小脚本
  ☆33Updated 2 years ago
• Y4Sec-Team / no-templates
  如果反序列化过程中使用resolveClass拉黑了TemplatesImpl如何绕过
  ☆49Updated last year
• luelueking / CVE-2022-25845-In-Spring
  CVE-2022-25845(fastjson1.2.80) exploit in Spring Env!
  ☆81Updated 2 months ago
• Ovi3 / extract-react-router
  Extract React router info from React based website within browser
  ☆26Updated 10 months ago
• wh1t3p1g / tabby-intellij-plugin
  A IntelliJ Plugin for Tabby to Find Vulnerabilities Easily
  ☆31Updated 2 months ago
• kyo-w / Spel-research
  Spel-research
  ☆26Updated 2 years ago
• ax1sX / RouteCheck-Alpha
  A Java Route Collection Tool
  ☆90Updated 5 months ago
• yulate / ReflectorMate
  idea插件，快速生成反序列化中常用的方法，比如setFieldValue、createTemplatesImpl等
  ☆16Updated 3 months ago
• kezibei / php-filter-iconv
  ☆54Updated 4 months ago
• woodpecker-appstore / java-memshell-generator
  Java 内存马生成插件
  ☆50Updated last year
• unam4 / fineldapc
  某软最新公开gadgegt,新加入不出网利用。
  ☆59Updated 4 months ago
• xiaopan233 / GenerateNoHard
  本工具的定位是快速生成Java安全相关的Payload，如内存马、反序列化链、JNDI url、Fastjson等，动态生成相关Payload，并附带相应的文档。
  ☆90Updated 2 years ago
• triplexlove / javasocket
  java实现反序列化建立socket连接
  ☆56Updated last month
• HackJava / Spring
  《Spring漏洞研究》
  ☆44Updated 2 years ago
• ttonys / CodeQLAnalyseJar
  CodeQL分析闭源Jar包脚本，基于Apache Ant构建CodeQL数据库
  ☆32Updated 2 years ago
• BeichenDream / JDR
  ☆137Updated 2 years ago
• p1n93r / SpringBootAdmin-thymeleaf-SSTI
  SpringBootAdmin-thymeleaf-SSTI which can cause RCE
  ☆77Updated last year
• 4ra1n / java-swing-gui-stater
  java-swing-gui-stater | Java Swing GUI Maven 项目模板 | 简单的教程
  ☆45Updated 3 months ago
• yuligesec / watchvuln
  一个高价值漏洞采集与推送服务 | A valueable vulnerability collection and push service
  ☆31Updated 4 months ago
• A7cc / Vulnerabilities_Server
  一个集合了多种语言的实战化Web靶场 | A practical Web shooting range that integrates multiple languages
  ☆60Updated 2 weeks ago
• Y4Sec-Team / mysql-jdbc-tricks
  JDBC Attack Tricks
  ☆138Updated last year
• Lotus6 / FileMonitor
  Java命令行文件监控小工具(代码审计)
  ☆100Updated 3 years ago
• Whoopsunix / utf-8-overlong-encoding
  抽离出 utf-8-overlong-encoding 的序列化逻辑，实现 2 3 字节加密序列化数组
  ☆120Updated 10 months ago
• howmp / wget
  可能是windows最小的wget (862字节)
  ☆63Updated last month
• aaaademo / evil-mysql-server
  ☆21Updated 9 months ago
• bmth666 / Yongyou-Unserialize-plus
  用友的一些反序列化链子以及1day，二开了狼组的YongYouNcTool，改了一下逻辑以及poc
  ☆88Updated 3 months ago
• Ar3h / utf8-overlong-agent
  使用 agent 实现反序列化 utf8 overlong
  ☆71Updated 9 months ago