tongasdp / tongasdp-testView external linksLinks
TongASDP漏洞测试环境
☆35Mar 22, 2023Updated 2 years ago
Alternatives and similar repositories for tongasdp-test
Users that are interested in tongasdp-test are comparing it to the libraries listed below
Sorting:
- WALA 学习笔记☆14Aug 8, 2023Updated 2 years ago
- ☆41Mar 10, 2021Updated 4 years ago
- nativeRasp that can hook native methods☆24Apr 24, 2023Updated 2 years ago
- A declarative static analysis tool for jvm bytecode based Datalog like CodeQL☆344Jan 6, 2024Updated 2 years ago
- Low-level RASP: Protecting Applications Implemented in High-level Programming Languages☆69Oct 19, 2025Updated 3 months ago
- cve-2022-34169 延伸出的Jdk Xalan的payload自动生成工具,可根据不同的Jdk生成出其所对应的xslt文件☆93Jan 17, 2023Updated 3 years ago
- Finding Java gadget chains with CodeQL☆184Jan 14, 2025Updated last year
- A PHP code transformer to provide protection against injection attacks☆10Jul 11, 2011Updated 14 years ago
- JAVA IAST Example☆49Dec 13, 2021Updated 4 years ago
- ☆12Nov 21, 2023Updated 2 years ago
- Apache Shiro CVE-2022-32532☆13Jun 28, 2022Updated 3 years ago
- Django QuerySet.annotate(), aggregate(), extra() SQL 注入☆24May 31, 2022Updated 3 years ago
- goon,是一款基于golang开发的扫描工具,暂时支持portscan、webscan、titlescan、dirscan、fofascan、pluginscan等模块功能,当然也支持将这些模块联动起来的autoscan。后期也会慢慢加入其他零件模块,感谢您的使用,也希望…☆10Jun 28, 2021Updated 4 years ago
- 在JDK8下运行《How Tomcat Works》的源码☆12Apr 16, 2019Updated 6 years ago
- A static code analysis tool☆17Mar 17, 2025Updated 10 months ago
- 自动反编译闭源应用,创建codeql数据库☆316Mar 2, 2022Updated 3 years ago
- https://github.com/GrrrDog/Java-Deserialization-Cheat-Sheet☆54Sep 11, 2021Updated 4 years ago
- 基于JVM-Sandbox实现RASP安全监控防护☆53Aug 8, 2023Updated 2 years ago
- SpringBootAdmin-thymeleaf-SSTI which can cause RCE☆86Jul 18, 2023Updated 2 years ago
- tomcat使用了自带session同步功能时,不安全的配置(没有使用EncryptInterceptor)导致存在的反序列化漏洞,通过精心构造的数据包, 可以对使用了tomcat自带session同步功能的服务器进行攻击。PS:这个不是CVE-2020-9484,9484…☆212May 19, 2020Updated 5 years ago
- 超硬核!使用图数据技术发现软件漏洞☆185Sep 1, 2021Updated 4 years ago
- ☆15Aug 6, 2021Updated 4 years ago
- RASP测试靶场☆192Dec 22, 2022Updated 3 years ago
- oh my soot !☆93Aug 10, 2022Updated 3 years ago
- fastjson bypass autotype 1.2.68 with Throwable and AutoCloseable.☆229Oct 12, 2022Updated 3 years ago
- spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧☆753Apr 14, 2021Updated 4 years ago
- fastjson-1.2.61-RCE☆33Sep 26, 2019Updated 6 years ago
- Exchange ProxyRelay POC☆37Oct 20, 2022Updated 3 years ago
- Slides/Demos from the BSides Munich 2019 talk "Attacking Java RMI in 2019"☆101Sep 20, 2019Updated 6 years ago
- payloads☆15Mar 17, 2021Updated 4 years ago
- Java JDK 8-18 CodeQL databases☆17Jun 2, 2024Updated last year
- fastjson 1.2.68 版本 autotype bypass☆142Jun 17, 2022Updated 3 years ago
- bypass JEP290 RaspHook code☆63Sep 21, 2020Updated 5 years ago
- ☆153Jun 24, 2019Updated 6 years ago
- java内存对象搜索辅助工具☆822Sep 23, 2022Updated 3 years ago
- Java Agent is a Java application probe of DongTai IAST, which collects method invocation data during runtime of Java application by dynam…☆696Dec 25, 2023Updated 2 years ago
- Neo4J visualisation tool for the Code Property Graph☆14May 17, 2021Updated 4 years ago
- ☆20Jan 16, 2024Updated 2 years ago
- The Demo for CVE-2017-11427☆12Mar 3, 2018Updated 7 years ago