TongASDP漏洞测试环境
☆35Mar 22, 2023Updated 3 years ago
Alternatives and similar repositories for tongasdp-test
Users that are interested in tongasdp-test are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- WALA 学习笔记☆14Aug 8, 2023Updated 2 years ago
- ☆41Mar 10, 2021Updated 5 years ago
- nativeRasp that can hook native methods☆23Apr 24, 2023Updated 2 years ago
- Low-level RASP: Protecting Applications Implemented in High-level Programming Languages☆69Oct 19, 2025Updated 5 months ago
- cve-2022-34169 延伸出的Jdk Xalan的payload自动生成工具,可根据不同的Jdk生成出其所对应的xslt文件☆93Jan 17, 2023Updated 3 years ago
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- JAVA IAST Example☆49Dec 13, 2021Updated 4 years ago
- Apache Shiro CVE-2022-32532☆13Jun 28, 2022Updated 3 years ago
- A declarative static analysis tool for jvm bytecode based Datalog like CodeQL☆345Jan 6, 2024Updated 2 years ago
- A PHP code transformer to provide protection against injection attacks☆10Jul 11, 2011Updated 14 years ago
- 基于JVM-Sandbox实现RASP安全监控防护☆52Aug 8, 2023Updated 2 years ago
- 识别操作系统指纹☆20Jan 17, 2022Updated 4 years ago
- ☆21Jan 16, 2024Updated 2 years ago
- Finding Java gadget chains with CodeQL☆185Jan 14, 2025Updated last year
- ☆15Aug 6, 2021Updated 4 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
- https://github.com/GrrrDog/Java-Deserialization-Cheat-Sheet☆54Sep 11, 2021Updated 4 years ago
- goon,是一款基于golang开发的扫描工具,暂时支持portscan、webscan、titlescan、dirscan、fofascan、pluginscan等模块功能,当然也支持将这些模块联动起来的autoscan。后期也会慢慢加入其他零件模块,感谢您的使用,也希望…☆10Jun 28, 2021Updated 4 years ago
- 自动反编译闭源应用,创建codeql数据库☆317Mar 2, 2022Updated 4 years ago
- SpringBootAdmin-thymeleaf-SSTI which can cause RCE☆86Jul 18, 2023Updated 2 years ago
- A static code analysis tool☆18Mar 17, 2025Updated last year
- spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧☆753Apr 14, 2021Updated 4 years ago
- 超硬核!使用图数据技术发现软件漏洞☆185Sep 1, 2021Updated 4 years ago
- tomcat使用了自带session同步功能时,不安全的配置(没有使用EncryptInterceptor)导致存在的反序列化漏洞,通过精心构造的数据包, 可以对使用了tomcat自带session同步功能的服务器进行攻击。PS:这个不是CVE-2020-9484,9484…☆212May 19, 2020Updated 5 years ago
- fastjson 1.2.68 版本 autotype bypass☆142Jun 17, 2022Updated 3 years ago
- DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- fastjson-1.2.61-RCE☆33Sep 26, 2019Updated 6 years ago
- RASP测试靶场☆194Dec 22, 2022Updated 3 years ago
- 一个利用ASM对字节码进行污点传播分析的静态代码审计应用(添加了大量代码注释,适合大家进行源码学习)。也加入了挖掘Fastjson反序列化gadget chains和SQLInject(JdbcTemplate、MyBatis、JPA、Hibernate、原生jdbc等)静…☆458Mar 24, 2022Updated 4 years ago
- ☆153Jun 24, 2019Updated 6 years ago
- Slides/Demos from the BSides Munich 2019 talk "Attacking Java RMI in 2019"☆101Sep 20, 2019Updated 6 years ago
- Django QuerySet.annotate(), aggregate(), extra() SQL 注入☆25May 31, 2022Updated 3 years ago
- Basic code for creating the Alibaba FastJson + Spring gadget chain, as used to exploit Apache Dubbo in CVE-2019-17564 - more information …☆16Dec 10, 2022Updated 3 years ago
- A helpful Java Deserialization exploit framework.☆1,242Feb 17, 2025Updated last year
- analysis java dependence and store in neo4j☆18Oct 22, 2018Updated 7 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- fastjson auto type derivation search☆21Aug 19, 2021Updated 4 years ago
- bypass JEP290 RaspHook code☆63Sep 21, 2020Updated 5 years ago
- fastjson bypass autotype 1.2.68 with Throwable and AutoCloseable.☆229Oct 12, 2022Updated 3 years ago
- ☆12Nov 21, 2023Updated 2 years ago
- 《深入理解SAST静态应用安全测试》Static Application Security Testing.☆391Sep 28, 2025Updated 6 months ago
- xAST评价体系,让安全工具不再“黑盒”. The xAST evaluation benchmark makes security tools no longer a "black box".☆468Jan 15, 2026Updated 2 months ago
- Tai-e的Web插件☆23Jun 11, 2024Updated last year