luelueking / Java-CVE-Lists
☆17Updated last year
Alternatives and similar repositories for Java-CVE-Lists:
Users that are interested in Java-CVE-Lists are comparing it to the libraries listed below
- 之前方便自己研究RASP原理和绕过时顺手写的,用于快速启动和重置RASP环境☆55Updated 4 months ago
- A vul-finder for loading CPG and automated finding vul-call-chains☆38Updated 5 months ago
- 一个简单的批量反编译jar包的小脚本☆35Updated 2 years ago
- Spel-research☆26Updated 2 years ago
- Write Up Code of HITB Sec-Sin 2021 Make JDBC Attacks Brilliant Again☆11Updated last year
- 如果反序列化过程中使用resolveClass拉黑了TemplatesImpl如何绕过☆50Updated last year
- A IntelliJ Plugin for Tabby to Find Vulnerabilities Easily☆32Updated 3 months ago
- ☆28Updated last year
- A Java Route Collection Tool☆91Updated 7 months ago
- CodeQL分析闭源Jar包脚本,基于Apache Ant构建CodeQL数据库☆33Updated 2 years ago
- ☆22Updated this week
- Extract React router info from React based website within browser☆27Updated 11 months ago
- ☆137Updated 2 years ago
- CVE-2022-25845(fastjson1.2.80) exploit in Spring Env!☆86Updated 3 months ago
- 检测查杀java内存马☆76Updated last year
- idea插件,快速生成反序列化中常用的方法,比如setFieldValue、createTemplatesImpl等☆16Updated 5 months ago
- 某软最新公开gadgegt,新加入不出网利用。☆61Updated 5 months ago
- Java 内存马生成插件☆50Updated last year
- Tomcat的SPI后门☆8Updated last year
- 抽离出 utf-8-overlong-encoding 的序列化逻辑,实现 2 3 字节加密序列化数组☆121Updated 11 months ago
- SpringBootAdmin-thymeleaf-SSTI which can cause RCE☆78Updated last year
- 《Spring漏洞研究》☆45Updated 2 years ago
- 使用 agent 实现反序列化 utf8 overlong☆71Updated 10 months ago
- 用来将Tai-e改造为开箱即用的静态代码安全分析框架的一些demo☆36Updated 10 months ago
- Java 代码审计-存在风险的函数汇总。方便我们日常代码审计过程中快速定位漏洞点,配合静态代码分析工具做到事半功倍。Java code audit - summary of risky functions. It is convenient for us to quickl…☆29Updated 7 months ago
- 本工具的定位是快速生成Java安全相关的Payload,如内存马、反序列化链、JNDI url、Fastjson等,动态生成相关Payload,并附带相应的文档。☆90Updated this week
- java实现反序列化建立socket连接☆58Updated 2 months ago
- Fastjson姿势技巧集合☆13Updated 2 years ago
- Lessons for syntaxflow zero to hero☆48Updated 5 months ago