Alternatives and similar repositories for awesome-cloud-native-security

Users that are interested in awesome-cloud-native-security are comparing it to the libraries listed below

• W01fh4cker / LearnFastjsonVulnFromZero-Basic
  【两万字原创】零基础学fastjson漏洞（基础篇），公众号：追梦信安
  ☆183Updated last year
• wa1ki0g / NoAuth
  java-web 自动化鉴权绕过
  ☆371Updated 8 months ago
• crushforyou / 2025hvv-poc
  记录2025hvvpoc
  ☆249Updated 4 months ago
• col4-eng / cloud-native-security
  云原生安全
  ☆37Updated 3 years ago
• safe6Sec / ShiroAndFastJson
  shiro加fastjson环境
  ☆142Updated 3 years ago
• Zjackky / CodeScan
  一款轻量级匹配Sink点的代码审计扫描器，为了帮助红队过程中快速代码审计的小工具
  ☆399Updated last year
• chainreactors / fingers
  ALLINONE framework and technology detect lib
  ☆223Updated this week
• OracleNep / Nday-Exploit-Plan
  历史漏洞的细节以及利用方法汇总收集
  ☆164Updated last year
• kyo-w / router-router
  Java web路由内存分析工具
  ☆437Updated 7 months ago
• Aur0ra-m / APIKiller
  API Security DAST & Oprations
  ☆319Updated 2 years ago
• novysodope / javaeasyscan
  javaeasyscanner - 富婆系列，代码审计辅助工具，致力于解放大脑，方便双手
  ☆276Updated last year
• ReAbout / audit-java
  Java代码审计手册，关注于漏洞挖掘而非利用【持续更新】
  ☆196Updated last year
• javaweb-rasp / javaweb-vuln
  RASP测试靶场
  ☆191Updated 3 years ago
• HackGolang / HackGolang
  《Go语言安全-只有Go安全才能拯救地球》Only Golang Security Can Save The Earth.
  ☆192Updated last month
• W01fh4cker / LearnFastjsonVulnFromZero-Improvement
  【两万字原创】零基础学fastjson漏洞（提高篇），公众号：追梦信安
  ☆211Updated 2 years ago
• m-sec-org / ez-ai-agent
  Automated Penetration Testing with EZ and Agents
  ☆148Updated 9 months ago
• datouo / CTF-Java-Gadget
  CTF-Java-Gadget专注于收集CTF中Java赛题的反序列化片段
  ☆273Updated last year
• dota-st / JavaSec
  个人学习Java安全的笔记
  ☆126Updated 2 years ago
• kunwu2023 / kunwu
  kunwu是新一代webshell检测引擎，使用了内置了模糊规则、污点分析模拟执行、机器学习三种高效的检测策略
  ☆296Updated last year
• keven1z / simpleIAST
  simpleIAST- 基于污点追踪的灰盒漏洞扫描工具。
  ☆98Updated last week
• Goqi / ErKai
  ErKai-开源安全项目二开计划
  ☆190Updated 8 months ago
• phith0n / vueinfo
  Extract website information from Vue
  ☆283Updated 2 years ago
• cdhe / JavaSecInterview
  打造最强的Java安全研究与安全开发面试题库，帮助师傅们找到满意的工作
  ☆198Updated 3 years ago
• luelueking / RuoYi-v4.7.8-RCE-POC
  ☆249Updated last year
• TheKingOfDuck / SinkFinder
  闭源系统半自动漏洞挖掘工具，针对 jar/war/zip 进行静态代码分析，输出从source到sink的可达路径。LLM将验证路径可达性，并根据上下文给出该路径可信分数
  ☆486Updated 6 months ago
• kezibei / fastjson_payload
  ☆229Updated 6 months ago
• Whoopsunix / JavaRce
  Common Exploitation Techniques for Java RCE Vulnerabilities in Real-World Scenarios | 实战场景较通用的 Java Rce 相关漏洞的利用方式
  ☆539Updated 9 months ago
• Zacarx / AICodeScan
  一款基于Zjackky/CodeScan的轻量级匹配Sink点并AI审计的代码审计扫描器
  ☆239Updated 10 months ago
• c0r1 / BypassPro
  AutoBypass403-BurpSuite 插件二开重构，优化执行逻辑
  ☆307Updated last year
• leveryd / x-waf
  让"WAF绕过"变得简单
  ☆433Updated 10 months ago