又一个Java Web代码审计工具
☆100May 7, 2018Updated 7 years ago
Alternatives and similar repositories for CAFJE
Users that are interested in CAFJE are comparing it to the libraries listed below
Sorting:
- Burpsuite HTTP 插件,主要用于内网测试,可定制Content-Type和Response Content☆24Jul 2, 2018Updated 7 years ago
- kiwi:安全源码审计工具☆247Aug 12, 2019Updated 6 years ago
- 用于演示Java Web项目中,漏洞的成因及修复方案,可用于黑盒测试和白盒测试,部分修复方案可用于生产环境。☆43Apr 20, 2018Updated 7 years ago
- 基于burpsuite headless 的代理式被动扫描系统☆95Feb 10, 2020Updated 6 years ago
- Java-Web-Security - Sichere Webanwendungen mit Java entwickeln☆220Feb 19, 2026Updated last week
- A Java runtime information-gathering tool which uses the Java Attach API for information acquisition☆204Apr 26, 2021Updated 4 years ago
- 用WebShell攻击PHP-FPM Attacking PHP-FPM with WebShell☆41May 6, 2021Updated 4 years ago
- 更快速的进行Web应用指纹识别☆170May 9, 2019Updated 6 years ago
- 基于Python3的Web日志分析小工具☆12Nov 10, 2016Updated 9 years ago
- 针对于Spring框架的自动Java代码审计工具☆37Jan 24, 2022Updated 4 years ago
- Java通用漏洞修复安全组件☆60Jul 12, 2025Updated 7 months ago
- Static code auditing system☆468Jan 8, 2021Updated 5 years ago
- vulscan 扫描系统:最新的poc&exp漏洞扫描,redis未授权、敏感文件、java反序列化、tomcat命令执行及各种未授权扫描等...☆630May 10, 2019Updated 6 years ago
- 通过脉脉用户猜测企业邮箱☆238May 7, 2020Updated 5 years ago
- some java code i met or i used☆29May 7, 2019Updated 6 years ago
- 自动扫描内网常见sql、no-sql数据库脚本(mysql、mssql、oracle、postgresql、redis、mongodb、memcached、elasticsearch),包含未授权访问及常规弱口令检测☆567Dec 1, 2017Updated 8 years ago
- Apache Log4j 1.2.X存在反序列化远程代码执行漏洞☆78Dec 25, 2019Updated 6 years ago
- java内存对象搜索辅助工具☆823Sep 23, 2022Updated 3 years ago
- A JSP backdoor that enables under Tomcat hiding arbitrary JSP files, in addition to their access logs.☆216Mar 31, 2019Updated 6 years ago
- ☆153Jun 24, 2019Updated 6 years ago
- CVE-2018-8021 Proof-Of-Concept and Exploit☆106Dec 3, 2018Updated 7 years ago
- Burp Suite Collaborator HTTP API☆45May 27, 2018Updated 7 years ago
- 总结一些渗透中值得关注的默认端口☆23May 19, 2016Updated 9 years ago
- web模糊测试 - 将漏洞可能性放大☆145Apr 23, 2019Updated 6 years ago
- java source code static code analysis and danger function identify prog☆534Feb 18, 2019Updated 7 years ago
- 利用任意文件下载漏洞循环下载反编译 Class 文件获得网站 Java 源代码☆711May 10, 2021Updated 4 years ago
- Reference:https://www.w2n1ck.com/article/44/☆155Mar 7, 2020Updated 5 years ago
- 鹏 RocB - Java代码审计IDEA插件 SAST☆151Sep 16, 2021Updated 4 years ago
- 增强版WeblogicScan、检测结果更精确、插件化、添加CVE-2019-2618,CVE-2019-2729检测,Python3支持☆968Jun 16, 2024Updated last year
- 源代码漏洞の审计☆828Jul 2, 2024Updated last year
- Seebug、structs、cve漏洞实时监控推送系统🔦☆274Apr 18, 2018Updated 7 years ago
- 整理收集Struts2漏洞环境☆270Jan 9, 2018Updated 8 years ago
- Web Security Technology & Vulnerability Analysis Whitepapers☆549Jan 1, 2019Updated 7 years ago
- A Metasploit module which allows authenticated database users to perform command execution of PostgreSQL 9.3 > Latest Version☆14May 8, 2019Updated 6 years ago
- 上传漏洞fuzz字典生成脚本☆1,270Apr 1, 2021Updated 4 years ago
- PHP 白盒分析工具,结合AST 和数据流跟踪分析代码,达到自动化白盒审计功能☆148May 14, 2018Updated 7 years ago
- 总结了20+.Net反序列化文章,持续更新☆748Apr 3, 2024Updated last year
- 一个利用ASM对字节码进行污点传播分析的静态代码审计应用(添加了大量代码注释,适合大家进行源码学习)。也加入了挖掘Fastjson反序列化gadget chains和SQLInject(JdbcTemplate、MyBatis、JPA、Hibernate、原生jdbc等)静…☆458Mar 24, 2022Updated 3 years ago
- ZZCMS v8.2-重装GETSHELL工具☆11May 8, 2018Updated 7 years ago