Alternatives and similar repositories for awesome-cloud-native-security

Users that are interested in awesome-cloud-native-security are comparing it to the libraries listed below

• W01fh4cker / LearnFastjsonVulnFromZero-Basic
  【两万字原创】零基础学fastjson漏洞（基础篇），公众号：追梦信安
  ☆164Updated 8 months ago
• Goqi / ErKai
  ErKai-开源安全项目二开计划
  ☆186Updated 3 months ago
• wa1ki0g / NoAuth
  java-web 自动化鉴权绕过
  ☆314Updated 3 months ago
• W01fh4cker / LearnFastjsonVulnFromZero-Improvement
  【两万字原创】零基础学fastjson漏洞（提高篇），公众号：追梦信安
  ☆200Updated last year
• cdhe / JavaSecInterview
  打造最强的Java安全研究与安全开发面试题库，帮助师傅们找到满意的工作
  ☆190Updated 3 years ago
• Zjackky / CodeScan
  一款轻量级匹配Sink点的代码审计扫描器，为了帮助红队过程中快速代码审计的小工具
  ☆368Updated 9 months ago
• kunwu2023 / kunwu
  kunwu是新一代webshell检测引擎，使用了内置了模糊规则、污点分析模拟执行、机器学习三种高效的检测策略
  ☆292Updated last year
• chainreactors / fingers
  ALLINONE framework and technology detect lib
  ☆186Updated 2 months ago
• m-sec-org / ez-ai-agent
  Automated Penetration Testing with EZ and Agents
  ☆97Updated 3 months ago
• HackGolang / HackGolang
  《Go语言安全-只有Go安全才能拯救地球》Only Golang Security Can Save The Earth.
  ☆179Updated 2 years ago
• col4-eng / cloud-native-security
  云原生安全
  ☆35Updated 3 years ago
• Whoopsunix / JavaRce
  Common Exploitation Techniques for Java RCE Vulnerabilities in Real-World Scenarios | 实战场景较通用的 Java Rce 相关漏洞的利用方式
  ☆516Updated 4 months ago
• Aur0ra-m / APIKiller
  API Security DAST & Oprations
  ☆317Updated 2 years ago
• OracleNep / Nday-Exploit-Plan
  历史漏洞的细节以及利用方法汇总收集
  ☆159Updated 7 months ago
• safe6Sec / ShiroAndFastJson
  shiro加fastjson环境
  ☆132Updated 2 years ago
• novysodope / javaeasyscan
  javaeasyscanner - 富婆系列，代码审计辅助工具，致力于解放大脑，方便双手
  ☆273Updated last year
• ReAbout / audit-java
  Java代码审计手册，关注于漏洞挖掘而非利用【持续更新】
  ☆174Updated 7 months ago
• luelueking / RuoYi-v4.7.8-RCE-POC
  ☆241Updated last year
• leveryd / x-waf
  让"WAF绕过"变得简单
  ☆380Updated 5 months ago
• crushforyou / 2025hvv-poc
  记录2025hvvpoc
  ☆39Updated this week
• leesinz / crush
  CRUSH aims to crawl historical vulnerability data from major platforms and monitor daily updates.
  ☆42Updated 11 months ago
• bcvgh / daydayExp-pocs
  daydayExp的漏洞POC仓库，慢慢更新...
  ☆342Updated 8 months ago
• phith0n / vueinfo
  Extract website information from Vue
  ☆275Updated last year
• Amulab / CAudit
  集权设施扫描器
  ☆428Updated last year
• winezer0 / APIFinderPlus
  目标是成为当下最完善的API挖掘工具，实现自动提取响应敏感信息、URI信息，并且对URI进行自动|手动递归检查
  ☆218Updated this week
• Zacarx / AICodeScan
  一款基于Zjackky/CodeScan的轻量级匹配Sink点并AI审计的代码审计扫描器
  ☆193Updated 5 months ago
• dota-st / JavaSec
  个人学习Java安全的笔记
  ☆123Updated 2 years ago
• kyo-w / router-router
  Java web路由内存分析工具
  ☆433Updated last month
• MrWQ / vulnerability-wiki
  公开漏洞知识库整合：https://mrwq.github.io/vulnerability-wiki/#/
  ☆127Updated 6 months ago
• TheKingOfDuck / SinkFinder
  闭源系统半自动漏洞挖掘工具，针对 jar/war/zip 进行静态代码分析，输出从source到sink的可达路径。LLM将验证路径可达性，并根据上下文给出该路径可信分数
  ☆465Updated 3 weeks ago