neargle/cloud_native_security_test_case

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/neargle/cloud_native_security_test_case)

neargle / cloud_native_security_test_case

🌶 一些和容器化/容器编排/服务网格等技术相关的安全代码片段[自用备份]

☆81

Alternatives and similar repositories for cloud_native_security_test_case

Users that are interested in cloud_native_security_test_case are comparing it to the libraries listed below

Sorting:

0xbug / CVE-2019-8451
View on GitHub
https://jira.atlassian.com/browse/JRASERVER-69793
☆10Sep 16, 2019Updated 6 years ago
iSafeBlue / presentation-slides
View on GitHub
☆34Sep 19, 2022Updated 3 years ago
codeplutos / java-security-manager-bypass
View on GitHub
☆153Jun 24, 2019Updated 6 years ago
Metarget / k0otkit
View on GitHub
k0otkit is a universal post-penetration technique which could be used in penetrations against Kubernetes clusters.
☆301Aug 30, 2021Updated 4 years ago
myvyang / chromium_for_spider
View on GitHub
dynamic crawler for web vulnerability scanner
☆252Mar 4, 2020Updated 6 years ago
Ruil1n / helm-tiller-pwn
View on GitHub
☆16Jan 5, 2021Updated 5 years ago
motikan2010 / CVE-2020-5398
View on GitHub
CVE-2020-5398 - RFD(Reflected File Download) Attack for Spring MVC
☆87Dec 15, 2022Updated 3 years ago
HXSecurity / DongTai-agent-java
View on GitHub
Java Agent is a Java application probe of DongTai IAST, which collects method invocation data during runtime of Java application by dynam…
☆697Dec 25, 2023Updated 2 years ago
threedr3am / tomcat-cluster-session-sync-exp
View on GitHub
tomcat使用了自带session同步功能时，不安全的配置（没有使用EncryptInterceptor）导致存在的反序列化漏洞，通过精心构造的数据包，可以对使用了tomcat自带session同步功能的服务器进行攻击。PS:这个不是CVE-2020-9484，9484…
☆212May 19, 2020Updated 5 years ago
sumerzhang / PhishingInstall
View on GitHub
发信平台自动化部署
☆65Jun 6, 2020Updated 5 years ago
c0ny1 / java-object-searcher
View on GitHub
java内存对象搜索辅助工具
☆823Sep 23, 2022Updated 3 years ago
lsh4ck / Langzi_SRC_Safe_Cruise
View on GitHub
LANGZI_SRC_安全巡航是一款集成漏扫，验证，资产监控，自动复现并且生成结果表报的工具，实现初衷是为了帮助白帽子在SRC中节约时间成本的自动化工具。
☆14Jul 7, 2019Updated 6 years ago
gitrobtest / Java-Security
View on GitHub
Java Security Documents
☆81Sep 19, 2019Updated 6 years ago
reber0 / vtest
View on GitHub
用于辅助安全工程师漏洞挖掘、测试、复现，集合了mock、httplog、dns tools、xss，可用于测试各类无回显、无法直观判断或特定场景下的漏洞。
☆11Apr 2, 2021Updated 4 years ago
kxcode / JNDI-Exploit-Bypass-Demo
View on GitHub
Demo code for post <Restrictions of JNDI Manipulation RCE & Bypass>
☆267Jun 17, 2022Updated 3 years ago
pwntester / codeql_grehack_workshop
View on GitHub
GreHack 2021 CodeQL for Java workshop
☆73Nov 19, 2021Updated 4 years ago
0Kee-Team / CatchMail
View on GitHub
CatchMail can be used to find some email addresses!
☆73May 22, 2023Updated 2 years ago
al0ne / MacCheck
View on GitHub
一个Mac下信息搜集小脚本主要用于信息搜集/应急响应/检测挖矿进程/异常进程/异常启动项
☆78Jul 21, 2020Updated 5 years ago
BeichenDream / Kcon2021Code
View on GitHub
☆275Oct 28, 2021Updated 4 years ago
Tr3jer / dnsAutoRebinding
View on GitHub
ssrf、ssrfIntranetFuzz、dnsRebinding、recordEncode、dnsPoisoning、Support ipv4/ipv6
☆217Aug 17, 2017Updated 8 years ago
veracode-research / actuator-testbed
View on GitHub
A vulnerable application exposing Spring Boot Actuators
☆123Feb 25, 2019Updated 7 years ago
kingkaki / ciscn_sshop
View on GitHub
参赛所用的sshop平台
☆11Jun 26, 2018Updated 7 years ago
threedr3am / log-agent
View on GitHub
利用agent hock指定的class，在jar运行周期内，用于跟踪被执行的方法，辅助做一些事情，比如挖洞啊
☆125Jul 17, 2020Updated 5 years ago
mpgn / Spring-Boot-Actuator-Exploit
View on GitHub
Spring Boot Actuator (jolokia) XXE/RCE
☆324Jun 16, 2020Updated 5 years ago
threedr3am / learnjavabug
View on GitHub
Java安全相关的漏洞和技术demo，原生Java、Fastjson、Jackson、Hessian2、XML反序列化漏洞利用和Spring、Dubbo、Shiro、CAS、Tomcat、RMI、Nexus等框架\中间件\功能的exploits以及Java Security…
☆2,690Mar 14, 2024Updated last year
Airboi / CVE-2020-17144-EXP
View on GitHub
Exchange2010 authorized RCE
☆157Dec 24, 2020Updated 5 years ago
z1Ro0 / tomcat_nofile_webshell
View on GitHub
Tomcat基于动态注册Filter的无文件Webshell
☆26Jun 20, 2020Updated 5 years ago
jweny / MemShellDemo
View on GitHub
内存马Demo合集 memshell demo for java / php / python
☆425May 31, 2021Updated 4 years ago
feihong-cs / jre8u20_gadget
View on GitHub
jre8u20 gadget
☆34May 23, 2021Updated 4 years ago
veracode-research / spring-view-manipulation
View on GitHub
When MVC magic turns black
☆297Sep 4, 2020Updated 5 years ago
opensec-cn / vtest
View on GitHub
用于辅助安全工程师漏洞挖掘、测试、复现，集合了mock、httplog、dns tools、xss，可用于测试各类无回显、无法直观判断或特定场景下的漏洞。
☆866Jul 21, 2019Updated 6 years ago
CHYbeta / Vuln100Topics
View on GitHub
知识星球《漏洞百出》最新 20条 Topic
☆114Nov 30, 2021Updated 4 years ago
aRe00t / rce-over-spark
View on GitHub
Remote Command Execution Over Spark
☆97Feb 21, 2026Updated 2 weeks ago
phith0n / zkar
View on GitHub
ZKar is a Java serialization protocol analysis tool implement in Go.
☆649Feb 15, 2025Updated last year
Metarget / cloud-native-security-book
View on GitHub
《云原生安全：攻防实践与体系构建》资料仓库
☆780Feb 19, 2023Updated 3 years ago
ramshazar / orangetsai-springboot-actuator-poc
View on GitHub
☆27Mar 6, 2021Updated 5 years ago
LeadroyaL / fastjson-blacklist
View on GitHub
☆835Jun 7, 2022Updated 3 years ago
chennqqi / godnslog
View on GitHub
An exquisite dns&http log server for verify SSRF/XXE/RFI/RCE vulnerability
☆469Sep 16, 2023Updated 2 years ago
QAX-A-Team / EventLogMaster
View on GitHub
Cobalt Strike插件 - RDP日志取证&清除
☆363Dec 23, 2019Updated 6 years ago