mtxiaowangzi/Java-EE-VulnWeb external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

mtxiaowangzi/Java-EE-VulnWeb

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/mtxiaowangzi/Java-EE-VulnWeb)

Close

mtxiaowangzi / Java-EE-VulnWebView on GitHubMore

• External links
• Readme badge

用于演示Java Web项目中，漏洞的成因及修复方案，可用于黑盒测试和白盒测试，部分修复方案可用于生产环境。

☆43Apr 20, 2018Updated 7 years ago

Alternatives and similar repositories for Java-EE-VulnWeb

Users that are interested in Java-EE-VulnWeb are comparing it to the libraries listed below

• mtxiaowangzi / CAFJE

  View on GitHub
  又一个Java Web代码审计工具
  ☆100May 7, 2018Updated 7 years ago
• GDSSecurity / JSSE_Fortify_SCA_Rules

  View on GitHub
  Custom Fortify SCA rules to detect common JSSE certification validation flaws
  ☆11Nov 18, 2015Updated 10 years ago
• syriusbughunt / From_JIRA_to_Shell

  View on GitHub
  Learn how to get a reverse shell from JIRA application server
  ☆24Dec 2, 2018Updated 7 years ago
• SycloverTeam / python_http_public_course

  View on GitHub
  Syclover公开课: Python与HTTP
  ☆26Nov 27, 2023Updated 2 years ago
• retanoj / BurpMultiProxy

  View on GitHub
  ☆13Feb 17, 2016Updated 10 years ago
• ph4ntonn / inject_und3ad

  View on GitHub
  👻inject_und3ad -- 蚁剑(AntSword)插件
  ☆24Aug 8, 2019Updated 6 years ago
• ztosec / hunter

  View on GitHub
  Hunter作为中通DevSecOps闭环方案中的一环，扮演着很重要的角色，开源之后希望能帮助到更多企业。
  ☆346Dec 14, 2022Updated 3 years ago
• haby0 / sec-note

  View on GitHub
  记录各语言、框架中危险的sink，个人代码审计、漏洞研究使用。
  ☆117Dec 30, 2021Updated 4 years ago
• JoyChou93 / trident

  View on GitHub
  Java通用漏洞修复安全组件
  ☆60Jul 12, 2025Updated 8 months ago
• Svti / ElasticSearchEXP

  View on GitHub
  ☆51Mar 25, 2015Updated 10 years ago
• RicterZ / unserchain

  View on GitHub
  ☆34Nov 4, 2018Updated 7 years ago
• pplsec / JavaVul

  View on GitHub
  JAVA Vul Code JAVA常见漏洞与防御代码示例
  ☆10Sep 18, 2018Updated 7 years ago
• mpgn / CVE-2019-3799

  View on GitHub
  CVE-2019-3799 - Spring Cloud Config Server: Directory Traversal < 2.1.2, 2.0.4, 1.4.6
  ☆31Apr 18, 2019Updated 6 years ago
• keven1z / XXEDemo

  View on GitHub
  收集了java XXE漏洞的demo及修复方式
  ☆19Mar 11, 2024Updated 2 years ago
• virusdefender / xsser

  View on GitHub
  一个xss利用平台
  ☆18Jun 1, 2014Updated 11 years ago
• sie504 / Struts-S2-xxx

  View on GitHub
  整理收集Struts2漏洞环境
  ☆270Jan 9, 2018Updated 8 years ago
• vulhub / java

  View on GitHub
  Java every minor versions.
  ☆74Apr 19, 2023Updated 2 years ago
• shack2 / JVApp

  View on GitHub
  Java漏洞练习程序，开发工具Eclipse，运行环境Java 1.7以上版本，Tocmat7以上。
  ☆54Oct 25, 2018Updated 7 years ago
• sv3nbeast / X-AutoXray

  View on GitHub
  AutoScan 有多个目标时，多线程调用xray+rad进行自动扫描
  ☆87Jul 12, 2022Updated 3 years ago
• ab1gale / phpcms-2008-CVE-2018-19127

  View on GitHub
  ☆41Nov 9, 2018Updated 7 years ago
• r3dxpl0it / Apache-Superset-Remote-Code-Execution-PoC-CVE-2018-8021

  View on GitHub
  CVE-2018-8021 Proof-Of-Concept and Exploit
  ☆106Dec 3, 2018Updated 7 years ago
• baidu-security / openrasp-testcases

  View on GitHub
  OpenRASP 漏洞测试环境
  ☆314Oct 31, 2023Updated 2 years ago
• mbechler / serjs

  View on GitHub
  A Java serializer in JavaScript
  ☆80May 21, 2018Updated 7 years ago
• TryGOTry / Debug-Nps

  View on GitHub
  在原版nps的基础上，增加了nps探测，以及对应的利用方式（如获取cookie，页面等），进行一些简单的二开。未经过大量测试，可能存在bug。
  ☆21Aug 5, 2025Updated 7 months ago
• Ciyfly / y_subdomain

  View on GitHub
  🐗 造轮子之子域名获取工具
  ☆15Dec 8, 2022Updated 3 years ago
• zer0yu / CVE-2021-43798

  View on GitHub
  Grafana Arbitrary File Reading Vulnerability
  ☆27Dec 7, 2021Updated 4 years ago
• ibey0nd / NSTScan-cli

  View on GitHub
  NST Vulnerability Scanner
  ☆18Jan 30, 2019Updated 7 years ago
• KpLi0rn / LearnCompiler

  View on GitHub
  编译原理学习代码仓库
  ☆23Jan 17, 2022Updated 4 years ago
• shad0w008 / Scanver

  View on GitHub
  scanver
  ☆21Nov 13, 2018Updated 7 years ago
• XTeam-Wing / SSRF_BYPASS

  View on GitHub
  SSRF 绕过 Payload
  ☆15Nov 12, 2020Updated 5 years ago
• Tom4t0 / cobalt-strike-persistence

  View on GitHub
  cobalt strike 自启动脚本
  ☆41Mar 19, 2017Updated 9 years ago
• pekita1 / SSTIF

  View on GitHub
  一个Fuzzing服务器端模板注入漏洞的半自动化工具
  ☆15Aug 4, 2016Updated 9 years ago
• lcvvvv / echoes

  View on GitHub
  echoes(回响)是一款Github，红队监测工具
  ☆14Mar 31, 2022Updated 3 years ago
• jkgh006 / assetscan

  View on GitHub
  资产扫描工具
  ☆45Sep 1, 2020Updated 5 years ago
• JoyChou93 / sks

  View on GitHub
  Security Knowledge Structure(安全知识汇总)
  ☆248Oct 12, 2018Updated 7 years ago
• secfree / bcrpscan

  View on GitHub
  Base on crawler result web path scanner.
  ☆78Apr 26, 2014Updated 11 years ago
• bit4woo / Java_deserialize_vuln_lab

  View on GitHub
  Java 反序列化学习的实验代码 Java_deserialize_vuln_lab
  ☆87Nov 26, 2018Updated 7 years ago
• se55i0n / DBScanner

  View on GitHub
  自动扫描内网常见sql、no-sql数据库脚本(mysql、mssql、oracle、postgresql、redis、mongodb、memcached、elasticsearch)，包含未授权访问及常规弱口令检测
  ☆568Dec 1, 2017Updated 8 years ago
• wh1t3p1g / MonitorServer

  View on GitHub
  同一局域网内网站源码监控、webshell检测总控端
  ☆23Mar 3, 2018Updated 8 years ago