Alternatives and similar repositories for cloud-native-sec-vuln:

Users that are interested in cloud-native-sec-vuln are comparing it to the libraries listed below

• miao2sec / collect-cloud-native-sec-vuln
  云原生安全漏洞收集
  ☆12Updated 2 weeks ago
• Y4Sec-Team / no-templates
  如果反序列化过程中使用resolveClass拉黑了TemplatesImpl如何绕过
  ☆51Updated last year
• wgpsec / EndpointSearch
  EndpointSearch 是一个探测云服务端点的扫描器。Endpoint Search is a sophisticated reconnaissance utility designed to discreetly identify and enumerate end…
  ☆73Updated 5 months ago
• N0el4kLs / JSHunter
  JSHunter-一款针对于前端的未授权访问扫描工具
  ☆23Updated last month
• kyo-w / Spel-research
  Spel-research
  ☆26Updated 2 years ago
• HackJava / JNDI
  《JNDI-深入理解Java万恶之源》
  ☆37Updated last year
• ax1sX / RouteCheck-Alpha
  A Java Route Collection Tool
  ☆92Updated 8 months ago
• luelueking / CVE-2022-25845-In-Spring
  CVE-2022-25845(fastjson1.2.80) exploit in Spring Env!
  ☆91Updated 5 months ago
• byname66 / SerializeJava
  用Go+Fyne开发的，展示JAVA序列化流以及集成一键插入脏数据,UTF过长编码绕WAF(Utf OverLoad Encoding),修改类SerializeVersionUID功能的图形化工具。
  ☆104Updated 3 months ago
• triplexlove / javasocket
  java实现反序列化建立socket连接
  ☆59Updated 4 months ago
• xiaogang000 / XG_JLGJ
  专为安服小白定制的SQL注入靶场，上手简单，练习sql注入的不二之选
  ☆44Updated 2 weeks ago
• l3yx / JNDI-Injection-LDAP-Deserialization
  ☆35Updated last year
• Lya0 / GoSecCode-codeql
  一个基于Codeql规则的go靶场
  ☆32Updated 2 months ago
• Qi4l-Labs / RLscan
  强化学习 + 端口扫描
  ☆120Updated 2 months ago
• SiJiDo / Ceyes
  一款基于fofa根据域名或fofa语法收集C段分布数量的工具
  ☆38Updated last year
• yaklang / syntaxflow
  Lessons for syntaxflow zero to hero
  ☆50Updated 7 months ago
• Firebasky / ScanDF
  The purpose of this script is to bypass disablefund, provide some useful information, and dig the hook function of PHP extension.
  ☆14Updated 3 years ago
• phith0n / tls_proxy
  A lightweight reverse proxy server that converts TLS traffic to TCP, allowing secure communication between clients and upstream servers.
  ☆72Updated 8 months ago
• Whoopsunix / utf-8-overlong-encoding
  抽离出 utf-8-overlong-encoding 的序列化逻辑，实现 2 3 字节加密序列化数组
  ☆123Updated last year
• l3yx / Java-RASP-Research-Env
  之前方便自己研究RASP原理和绕过时顺手写的，用于快速启动和重置RASP环境
  ☆64Updated 6 months ago
• expzhizhuo / iotscan-web
  这是一个基于vue3+element-plus+vite4+pinia开发一个资产测绘平台+漏洞扫描的前端项目，提供多种自定义的开发，如果你的扫描器或资产测绘平台不追求UI仅仅是为了快速开发，可以参考此项目。
  ☆71Updated 11 months ago
• pacemrc / VulDebug
  Java漏洞调试分析集合
  ☆88Updated last year
• Getshell / Fanzhi
  《FanZhi-攻击与反制的艺术》
  ☆64Updated last year
• chainreactors / neutron
  nano nuclei engine. no side effect.
  ☆64Updated 2 weeks ago
• A7cc / Vulnerabilities_Server
  一个集合了多种语言的实战化Web靶场 | A practical Web shooting range that integrates multiple languages
  ☆73Updated last month
• Ape1ron / davinci
  多组件客户端
  ☆74Updated 7 months ago
• KpLi0rn / DeserializeAll
  一个简单的批量反编译jar包的小脚本
  ☆35Updated 3 years ago
• d1sbb / ossFileList
  oss存储桶遍历漏洞利用脚本
  ☆80Updated 5 months ago
• RaidriarB / JS-Forward-Fuzz
  Web前端加密场景下的参数抓包修改、参数模糊测试工具
  ☆19Updated 9 months ago
• ax1sX / MemShell
  MemShell List
  ☆80Updated last year