Alternatives and similar repositories for CodeQLAnalyseJar

Users that are interested in CodeQLAnalyseJar are comparing it to the libraries listed below

• yaklang / syntaxflow
  Lessons for syntaxflow zero to hero
  ☆52Updated last year
• tabby-sec / tabby-path-finder
  A neo4j procedure for tabby
  ☆131Updated 3 months ago
• Y4tacker / HackingFernFlower
  2023白帽补天大会部分代码
  ☆127Updated last year
• tabby-sec / tabby-vul-finder
  A vul-finder for loading CPG and automated finding vul-call-chains
  ☆62Updated last month
• ax1sX / RouteCheck-Alpha
  A Java Route Collection Tool
  ☆101Updated last year
• luelueking / Deserial_Sink_With_JDBC
  Some ReadObject Sink With JDBC
  ☆240Updated last year
• keven1z / simpleIAST
  simpleIAST- 基于污点追踪的灰盒漏洞扫描工具。
  ☆90Updated last week
• p1n93r / SpringBootAdmin-thymeleaf-SSTI
  SpringBootAdmin-thymeleaf-SSTI which can cause RCE
  ☆81Updated 2 years ago
• woodpecker-appstore / jexpr-encoder-utils
  Java表达式语句生成器
  ☆194Updated last year
• luelueking / CVE-2022-25845-In-Spring
  CVE-2022-25845(fastjson1.2.80) exploit in Spring Env!
  ☆98Updated 10 months ago
• Y4Sec-Team / mysql-jdbc-tricks
  JDBC Attack Tricks
  ☆144Updated 2 years ago
• threedr3am / dubbo-exp
  dubbo快速利用exp，基本上老版本覆盖100%。
  ☆158Updated 2 months ago
• testtttter / ACAF
  Auto Code Audit Framework for Java
  ☆96Updated 3 years ago
• Boogipop / JavaSec
  JavaSec
  ☆40Updated last year
• Firebasky / ctf-Challenge
  是一些比赛中的好题，加上自己出的一些。。。
  ☆43Updated 3 years ago
• cwkiller / JDBC-PROXY-Bypass
  利用代理驱动绕过JDBC Attack检测
  ☆130Updated 3 months ago
• l3yx / Java-RASP-Research-Env
  之前方便自己研究RASP原理和绕过时顺手写的，用于快速启动和重置RASP环境
  ☆71Updated 11 months ago
• Whoopsunix / PPPYSO
  proof-of-concept for generating Java deserialization payload | Proxy MemShell
  ☆206Updated last year
• BeichenDream / JDR
  ☆143Updated 2 years ago
• Lonely-night / fastjsonVul
  fastjson 80 远程代码执行漏洞复现
  ☆197Updated 3 years ago
• waderwu / javaDeserializeLabs
  javaDeserializeLabs
  ☆69Updated 2 years ago
• cokeBeer / pyyso
  pyyso is a Python package that generate java serialized poc. Including CommonsCollections1-7, JDK7u21, JDK8u20, ldap for jndi, shiro-550,…
  ☆52Updated 2 years ago
• Whoopsunix / utf-8-overlong-encoding
  抽离出 utf-8-overlong-encoding 的序列化逻辑，实现 2 3 字节加密序列化数组
  ☆138Updated last year
• TheKingOfDuck / RCEFuzzer
  一个以fuzz为中心思想的被动扫描工具
  ☆157Updated last year
• rzte / agentcrack
  不那么一样的 Java Agent 内存马
  ☆286Updated last year
• AfterSnows / ApricusFindEvil
  检测查杀java内存马
  ☆84Updated last year
• su18 / rasp-vuln
  当死去的记忆突然开始攻击我，我终于想起了我还写过一款十分十分垃圾的 rasp 靶场。
  ☆78Updated 3 years ago
• yzddmr6 / Java-Js-Engine-Payloads
  Java Js Engine Payloads All in one
  ☆279Updated 2 years ago
• luelueking / Java-CVE-Lists
  ☆19Updated 2 years ago
• YYHYlh / Dubbo-Scan
  一款让你不只在dubbo-sample、vulhub或者其他测试环境里检测和利用成功的Apache Dubbo 漏洞检测工具。
  ☆169Updated 2 years ago