Alternatives and similar repositories for Audit-Rules:

Users that are interested in Audit-Rules are comparing it to the libraries listed below

• Lonely-night / fastjson_gadgets_scanner
  ☆131Updated 2 years ago
• bit4woo / Java_deserialize_vuln_lab
  Java 反序列化学习的实验代码 Java_deserialize_vuln_lab
  ☆87Updated 6 years ago
• meizjm3i / PHPVulFinder
  PHP Static Program Analysis
  ☆40Updated last year
• Ramos-dev / R9000
  ☆58Updated 4 years ago
• Lucifaer / head_first_javarasp
  一些Java RASP demo
  ☆11Updated 5 years ago
• Ruil1n / after-deserialization-attack
  Java After-Deserialization Attack
  ☆79Updated 3 years ago
• Ant-FG-Lab / non_RCE
  ☆41Updated 3 years ago
• Afant1 / RemoteObjectInvocationHandler
  bypass JEP290 RaspHook code
  ☆62Updated 4 years ago
• threedr3am / FindClassInJars
  个人用于在自动化挖掘gadget时，方便查找gadget chains中class所在jar包，以助于便捷审计测试gadget有效性的那么一个小工具。
  ☆60Updated 4 years ago
• proudwind / struts2_vulns
  Struts2 vuln env
  ☆43Updated 2 years ago
• tongasdp / tongasdp-test
  TongASDP漏洞测试环境
  ☆34Updated last year
• Mochazz / Struts2-Vuln
  关于Struts2框架的历史漏洞个人分析文章
  ☆53Updated 4 years ago
• iiiusky / java_rasp_example
  ☆28Updated 4 years ago
• ceclin / 0ctf-2021-finals-soln-buggy-loader
  solution to buggyLoader of 0CTF/TCTF 2021 Finals
  ☆20Updated 3 years ago
• boy-hack / bugbounty-cheatsheet
  A list of interesting payloads, tips and tricks for bug bounty hunters.
  ☆24Updated 5 years ago
• shengqi158 / Jackson-databind-RCE-PoC
  ☆80Updated 7 years ago
• Anemone95 / taint-benchmark
  A benchmark to evaluate taint analysis
  ☆30Updated 2 years ago
• jas502n / kibana-RCE
  kibana < 6.6.0 未授权远程代码命令执行 (Need Timelion And Canvas),CVE-2019-7609
  ☆90Updated 5 years ago
• hex0wn / learn-java-bug
  ☆72Updated 2 years ago
• kingkaki / Struts2-Vulenv
  struts2 漏洞环境源代码
  ☆75Updated 2 years ago
• guimaizi / testing_wave
  ☆58Updated 4 years ago
• pwntester / codeql_grehack_workshop
  GreHack 2021 CodeQL for Java workshop
  ☆75Updated 3 years ago
• angelwhu / jvm-rasp
  基于JVM-Sandbox实现RASP安全监控防护
  ☆52Updated last year
• LFYSec / XCTF2021Final-Dubbo
  Writeup and environment for XCTF2021Final-Dubbo
  ☆44Updated 3 years ago
• xfkxfk / pyvulhunter
  python audit tool 审计 注入 inject
  ☆34Updated 8 years ago
• phantom0301 / PTEye
  Phantom eye——A passive business logic vulnerability auditing tool
  ☆56Updated 5 years ago
• LeadroyaL / java-xxe-defense-demo
  java xxe defense demo
  ☆47Updated 5 years ago
• b1ngz / spring-boot-actuator-cloud-vul
  Spring Boot Actuator + Spring Cloud Vul Env
  ☆19Updated 5 years ago
• jas502n / fastjson-RCE
  fastjson-1.2.47
  ☆66Updated 5 years ago
• LeadroyaL / java_xxe_2019
  总结了一下2019年在JVM环境中使用XXE攻击的知识
  ☆57Updated 5 years ago