tangxiaofeng7/SecExample

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/tangxiaofeng7/SecExample)

tangxiaofeng7 / SecExample

JAVA 漏洞靶场 (Vulnerability Environment For Java)

☆482

Alternatives and similar repositories for SecExample

Users that are interested in SecExample are comparing it to the libraries listed below

Sorting:

j3ers3 / Hello-Java-Sec
View on GitHub
☕️ Java Security，安全编码和代码审计
☆1,722Mar 7, 2025Updated 11 months ago
l4yn3 / micro_service_seclab
View on GitHub
Java漏洞靶场
☆380Dec 25, 2023Updated 2 years ago
Maskhe / javasec
View on GitHub
自己学习java安全的一些总结，主要是安全审计相关
☆1,694Jan 5, 2022Updated 4 years ago
proudwind / javasec_study
View on GitHub
java代码审计学习笔记
☆679Feb 24, 2020Updated 6 years ago
HackJava / HackJava
View on GitHub
《Java安全-只有Java安全才能拯救宇宙》Only Java Security Can Save The Universe.
☆2,872Aug 4, 2023Updated 2 years ago
cn-panda / JavaCodeAudit
View on GitHub
Getting started with java code auditing 代码审计入门的小项目
☆930Feb 22, 2023Updated 3 years ago
phith0n / JavaThings
View on GitHub
Share Things Related to Java - Java安全漫谈笔记相关内容
☆1,991Apr 9, 2025Updated 10 months ago
JoyChou93 / java-sec-code
View on GitHub
Java web common vulnerabilities and security code which is base on springboot and spring security
☆2,649Dec 2, 2024Updated last year
feihong-cs / Java-Rce-Echo
View on GitHub
Java RCE 回显测试代码
☆1,016Oct 15, 2020Updated 5 years ago
r0eXpeR / fingerprint
View on GitHub
各种工具指纹收集分享
☆529Nov 3, 2021Updated 4 years ago
lokerxx / JavaVul
View on GitHub
JAVA 安全靶场，IAST 测试用例，JAVA漏洞复现，代码审计，SAST测试用例，安全扫描（主动和被动），JAVA漏洞靶场，RASP测试用例； Java Security Testbed, IAST Test Cases, Java Vulnerability R…
☆272Sep 6, 2024Updated last year
SummerSec / JavaLearnVulnerability
View on GitHub
Java漏洞学习笔记 Deserialization Vulnerability
☆945Jun 14, 2023Updated 2 years ago
bitterzzZZ / MemoryShellLearn
View on GitHub
分享几个直接可用的内存马，记录一下学习过程中看过的文章
☆975Mar 23, 2022Updated 3 years ago
safe6Sec / Fastjson
View on GitHub
Fastjson姿势技巧集合
☆1,824Oct 20, 2023Updated 2 years ago
threedr3am / JSP-WebShells
View on GitHub
Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势
☆1,404Jan 18, 2022Updated 4 years ago
UzJu / Cloud-Bucket-Leak-Detection-Tools
View on GitHub
六大云存储，泄露利用检测工具
☆1,241Mar 28, 2025Updated 11 months ago
7hang / --Java
View on GitHub
代码审计知识点整理-Java
☆529Jun 15, 2020Updated 5 years ago
wyzxxz / jndi_tool
View on GitHub
JNDI服务利用工具 RMI/LDAP，支持部分场景回显、内存shell，高版本JDK场景下利用等，fastjson rce命令执行，log4j rce命令执行漏洞检测辅助工具
☆2,012May 21, 2024Updated last year
EdgeSecurityTeam / EHole
View on GitHub
EHole(棱洞)3.0 重构版-红队重点攻击系统指纹探测工具
☆3,438Apr 2, 2024Updated last year
a1phaboy / FastjsonScan
View on GitHub
Fastjson扫描器，可识别版本、依赖库、autoType状态等。A tool to distinguish fastjson ,version and dependency
☆1,050Oct 7, 2022Updated 3 years ago
LandGrey / spring-boot-upload-file-lead-to-rce-tricks
View on GitHub
spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧
☆754Apr 14, 2021Updated 4 years ago
ffffffff0x / JVWA
View on GitHub
java 代码审计学习靶场
☆119Jan 11, 2024Updated 2 years ago
veo / wsMemShell
View on GitHub
WebSocket 内存马/Webshell，一种新型内存马/WebShell技术
☆1,487Apr 10, 2023Updated 2 years ago
chriskaliX / AD-Pentest-Notes
View on GitHub
用于记录内网渗透(域渗透)学习 :-)
☆1,236Nov 9, 2020Updated 5 years ago
ce-automne / TomcatMemShell
View on GitHub
拿来即用的Tomcat7/8/9/10版本Listener/Filter/Servlet内存马，支持注入CMD内存马和冰蝎内存马
☆511Aug 31, 2022Updated 3 years ago
Maskhe / FastjsonScan
View on GitHub
一个简单的Fastjson反序列化检测burp插件
☆970Jun 18, 2021Updated 4 years ago
rtcatc / Packer-Fuzzer
View on GitHub
Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack…
☆3,209May 24, 2024Updated last year
momosecurity / FindSomething
View on GitHub
基于chrome、firefox插件的被动式信息泄漏检测工具
☆1,381Nov 17, 2024Updated last year
SummerSec / learning-codeql
View on GitHub
CodeQL Java 全网最全的中文学习资料
☆799Mar 18, 2022Updated 3 years ago
pmiaowu / BurpFastJsonScan
View on GitHub
一款基于BurpSuite的被动式FastJson检测插件
☆1,238Oct 1, 2022Updated 3 years ago
1n7erface / Template
View on GitHub
Next generation RedTeam heuristic intranet scanning | 下一代RedTeam启发式内网扫描
☆1,115Sep 16, 2023Updated 2 years ago
savior-only / Spring_All_Reachable
View on GitHub
Spring漏洞综合利用工具
☆675Jul 5, 2023Updated 2 years ago
pen4uin / java-memshell-generator
View on GitHub
一款支持自定义的 Java 内存马生成工具｜A customizable Java in-memory webshell generation tool.
☆2,151Aug 21, 2025Updated 6 months ago
exp1orer / JNDI-Inject-Exploit
View on GitHub
解决FastJson、Jackson、Log4j2、原生JNDI注入漏洞的高版本JDKBypass利用，探测本地可用反序列化gadget达到命令执行、回显命令执行、内存马注入
☆770Jan 26, 2022Updated 4 years ago
whwlsfb / BurpCrypto
View on GitHub
BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite). 支持多种加密算…
☆1,620Aug 4, 2023Updated 2 years ago
f0ng / autoDecoder
View on GitHub
Burp插件，根据自定义来达到对数据包的处理（适用于加解密、爆破等），类似mitmproxy，不同点在于经过了burp中转，在自动加解密的基础上，不影响APP、网站加解密正常逻辑等。
☆1,327Dec 14, 2025Updated 2 months ago
javaweb-sec / javaweb-sec
View on GitHub
☆1,051Jun 6, 2025Updated 8 months ago
safe6Sec / PentestDB
View on GitHub
各种数据库的利用姿势
☆1,034Jan 3, 2025Updated last year
threedr3am / learnjavabug
View on GitHub
Java安全相关的漏洞和技术demo，原生Java、Fastjson、Jackson、Hessian2、XML反序列化漏洞利用和Spring、Dubbo、Shiro、CAS、Tomcat、RMI、Nexus等框架\中间件\功能的exploits以及Java Security…
☆2,689Mar 14, 2024Updated last year