Alternatives and similar repositories for this_is_my_study:

Users that are interested in this_is_my_study are comparing it to the libraries listed below

• HackJava / Spring
  《Spring漏洞研究》
  ☆44Updated 2 years ago
• SummerSec / LookupInterface
  CodeQL 寻找 JNDI利用 Lookup接口
  ☆163Updated 2 years ago
• HackJava / JNDI
  《JNDI-深入理解Java万恶之源》
  ☆38Updated last year
• 0linlin0 / Java
  java
  ☆54Updated 2 years ago
• wh1t3p1g / tabby-vul-finder
  A vul-finder for loading CPG and automated finding vul-call-chains
  ☆37Updated 4 months ago
• su18 / rasp-vuln
  当死去的记忆突然开始攻击我，我终于想起了我还写过一款十分十分垃圾的 rasp 靶场。
  ☆77Updated 2 years ago
• kyo-w / Spel-research
  Spel-research
  ☆26Updated 2 years ago
• changheluor007 / JSPKiller
  基于污点分析的JSP Webshell检测工具，模拟JVM的栈帧操作进行数据流分析，可以检测出各种变形的JSP Webshell
  ☆21Updated 3 years ago
• N0el4kLs / JSHunter
  JSHunter-一款针对于前端的未授权访问扫描工具
  ☆20Updated 6 months ago
• hosch3n / FastjsonVulns
  [fastjson 1.2.80] CVE-2022-25845 aspectj fileread & groovy remote classload
  ☆91Updated 2 years ago
• KpLi0rn / DeserializeAll
  一个简单的批量反编译jar包的小脚本
  ☆35Updated 2 years ago
• Firebasky / LdapBypassJndi
  The function of the tool is to inject JNDI through LDAP
  ☆28Updated 3 years ago
• R17a-17 / JavaVulnSummary
  Java漏洞分析汇合
  ☆142Updated 3 years ago
• KpLi0rn / ysoserial
  在原有yso基础上实现依赖分离，内存马注入等功能。A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆68Updated 3 years ago
• iiiusky / javaweb-codereview
  javaweb-codereview
  ☆30Updated 6 years ago
• Lotus6 / FileMonitor
  Java命令行文件监控小工具(代码审计)
  ☆100Updated 3 years ago
• godzeo / go-gin-vul
  GO语言漏洞靶场 GIN框架 支持docker一键启动
  ☆75Updated last year
• Firebasky / ScanDF
  The purpose of this script is to bypass disablefund, provide some useful information, and dig the hook function of PHP extension.
  ☆14Updated 3 years ago
• Hackaspx / Hackaspx
  《ASPX安全-只有ASPX安全才能拯救.NET》Only ASPX Security Can Save The NET.
  ☆33Updated 2 years ago
• welk1n / FastjsonPocs
  一些结合第三方组件的Fastjson POC，在1.2.48以后版本中陆续被添加至黑名单。
  ☆56Updated 5 years ago
• OneSourceCat / XxlJob-Hessian-RCE
  XxlJob<=2.1.2配置不当情况下反序列化RCE
  ☆89Updated 4 years ago
• ax1sX / RouteCheck-Alpha
  A Java Route Collection Tool
  ☆90Updated 6 months ago
• lz2y / DubboPOC
  Apache Dubbo漏洞测试Demo及其POC
  ☆61Updated last year
• cokeBeer / pyyso
  pyyso is a Python package that generate java serialized poc. Including CommonsCollections1-7, JDK7u21, JDK8u20, ldap for jndi, shiro-550,…
  ☆50Updated 2 years ago
• xhycccc / Shiro-Vuln-Demo
  Shiro漏洞实例源码
  ☆26Updated 3 years ago
• 0xrumble / BytecodeScreen
  ☆51Updated 2 years ago
• woodpecker-appstore / java-memshell-generator
  Java 内存马生成插件
  ☆50Updated last year
• threedr3am / fastjson-blacklist
  打CTF实在厌倦了找利用链，就知道一个fastjson的版本，一堆依赖找啊找，头都疼。为了解决这个烦恼，用了卓卓师傅的fastjson黑名单工具和库，自己改造了一下。
  ☆32Updated 5 years ago
• cokeBeer / go-cves
  收录go语言编写的项目、框架和组件出现的cve，或者一些相关的利用方式的文章
  ☆37Updated 2 years ago
• passer-W / snakeyaml-memshell
  springboot跨线程注入内存马
  ☆115Updated 2 years ago