we1h0/awesome-java-security-checklist external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

we1h0/awesome-java-security-checklist

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/we1h0/awesome-java-security-checklist)

Close

we1h0 / awesome-java-security-checklistView on GitHubMore

• External links
• Readme badge

awesome-java-security-checklist(关于Java安全方面,Java基础/审计/修复/设计/规范)

☆134Dec 3, 2019Updated 6 years ago

Alternatives and similar repositories for awesome-java-security-checklist

Users that are interested in awesome-java-security-checklist are comparing it to the libraries listed below

• Cryin / JavaID

  View on GitHub
  java source code static code analysis and danger function identify prog
  ☆534Feb 18, 2019Updated 7 years ago
• jas502n / Java-Compressed-file-security

  View on GitHub
  java web 压缩文件 安全 漏洞
  ☆20Mar 17, 2020Updated 6 years ago
• fengupupup / RocB

  View on GitHub
  鹏 RocB - Java代码审计IDEA插件 SAST
  ☆151Sep 16, 2021Updated 4 years ago
• SummerSec / learning-codeql

  View on GitHub
  CodeQL Java 全网最全的中文学习资料
  ☆799Mar 18, 2022Updated 4 years ago
• Maskhe / javasec

  View on GitHub
  自己学习java安全的一些总结，主要是安全审计相关
  ☆1,695Jan 5, 2022Updated 4 years ago
• threedr3am / learnjavabug

  View on GitHub
  Java安全相关的漏洞和技术demo，原生Java、Fastjson、Jackson、Hessian2、XML反序列化漏洞利用和Spring、Dubbo、Shiro、CAS、Tomcat、RMI、Nexus等框架\中间件\功能的exploits以及Java Security…
  ☆2,693Mar 14, 2024Updated 2 years ago
• SummerSec / JavaLearnVulnerability

  View on GitHub
  Java漏洞学习笔记 Deserialization Vulnerability
  ☆946Jun 14, 2023Updated 2 years ago
• JoyChou93 / java-sec-code

  View on GitHub
  Java web common vulnerabilities and security code which is base on springboot and spring security
  ☆2,658Dec 2, 2024Updated last year
• cn-panda / JavaCodeAudit

  View on GitHub
  Getting started with java code auditing 代码审计入门的小项目
  ☆930Feb 22, 2023Updated 3 years ago
• dean2021 / java_security_book

  View on GitHub
  记录整理日常java安全分析代码
  ☆14Dec 25, 2018Updated 7 years ago
• feihong-cs / Java-Rce-Echo

  View on GitHub
  Java RCE 回显测试代码
  ☆1,015Oct 15, 2020Updated 5 years ago
• MisakiKata / python_code_audit

  View on GitHub
  python 代码审计项目
  ☆299Oct 10, 2021Updated 4 years ago
• cn-panda / ThymeleafSSTIBypass

  View on GitHub
  Thymeleaf SSTI Bypass
  ☆13Nov 24, 2021Updated 4 years ago
• senzee1984 / Windows_x64_Calc_Shellcode

  View on GitHub
  Null-free shellcode for running calc.exe on Windows x64
  ☆14Mar 24, 2024Updated last year
• proudwind / javasec_study

  View on GitHub
  java代码审计学习笔记
  ☆680Feb 24, 2020Updated 6 years ago
• bitterzzZZ / MemoryShellLearn

  View on GitHub
  分享几个直接可用的内存马，记录一下学习过程中看过的文章
  ☆979Mar 23, 2022Updated 3 years ago
• HackJava / HackJava

  View on GitHub
  《Java安全-只有Java安全才能拯救宇宙》Only Java Security Can Save The Universe.
  ☆2,874Aug 4, 2023Updated 2 years ago
• LandGrey / spring-boot-upload-file-lead-to-rce-tricks

  View on GitHub
  spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧
  ☆754Apr 14, 2021Updated 4 years ago
• Firebasky / LdapBypassJndi

  View on GitHub
  The function of the tool is to inject JNDI through LDAP
  ☆28Dec 21, 2021Updated 4 years ago
• achuna33 / MYJNDIExploit

  View on GitHub
  自己的JNDI 利用工具，添加一些人性化功能
  ☆131Sep 4, 2022Updated 3 years ago
• Firebasky / Java

  View on GitHub
  关于学习java安全的一些知识,正在学习中ing,欢迎fork and star
  ☆792Jul 11, 2023Updated 2 years ago
• safe6Sec / CodeqlNote

  View on GitHub
  Codeql学习笔记
  ☆899Apr 25, 2022Updated 3 years ago
• fynch3r / Gadgets

  View on GitHub
  Java反序列化漏洞利用链补全计划，仅用于个人归纳总结。
  ☆420Dec 3, 2021Updated 4 years ago
• wooyunwang / Fortify

  View on GitHub
  源代码漏洞の审计
  ☆828Jul 2, 2024Updated last year
• dongfangyuxiao / BurpExtend

  View on GitHub
  基于Burp插件开发打造渗透测试自动化
  ☆422Dec 7, 2021Updated 4 years ago
• c0ny1 / java-object-searcher

  View on GitHub
  java内存对象搜索辅助工具
  ☆823Sep 23, 2022Updated 3 years ago
• j3ers3 / Hello-Java-Sec

  View on GitHub
  ☕️ Java Security，安全编码和代码审计
  ☆1,731Mar 7, 2025Updated last year
• bit4woo / python_sec

  View on GitHub
  python安全和代码审计相关资料收集 resource collection of python security and code review
  ☆1,352Aug 6, 2020Updated 5 years ago
• tabby-sec / tabby

  View on GitHub
  A CAT called tabby ( Code Analysis Tool )
  ☆1,640Jan 17, 2026Updated 2 months ago
• threedr3am / ysoserial

  View on GitHub
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.优化了一些东西。
  ☆214Jan 17, 2022Updated 4 years ago
• achuna33 / Memoryshell-JavaALL

  View on GitHub
  收集内存马打入方式
  ☆507May 20, 2022Updated 3 years ago
• ice-doom / codeql_compile

  View on GitHub
  自动反编译闭源应用，创建codeql数据库
  ☆316Mar 2, 2022Updated 4 years ago
• threedr3am / JSP-WebShells

  View on GitHub
  Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势
  ☆1,405Jan 18, 2022Updated 4 years ago
• uknowsec / Frida-Hook-In-Java-Notes

  View on GitHub
  Java层frida hook学习笔记 https://uknowsec.cn
  ☆47Feb 6, 2020Updated 6 years ago
• dr0op / shiro-550-with-NoCC

  View on GitHub
  Shiro-550 不依赖CC链利用工具
  ☆450Jun 19, 2024Updated last year
• safe6Sec / PentestDB

  View on GitHub
  各种数据库的利用姿势
  ☆1,033Jan 3, 2025Updated last year
• theLSA / CS-checklist

  View on GitHub
  PC客户端（C-S架构）渗透测试checklist / Client side(C-S) penetration checklist
  ☆663Feb 24, 2021Updated 5 years ago
• safe6Sec / Fastjson

  View on GitHub
  Fastjson姿势技巧集合
  ☆1,833Oct 20, 2023Updated 2 years ago
• r35tart / Penetration_Testing_Case

  View on GitHub
  用于记录分享一些有趣的案例
  ☆865Jan 10, 2022Updated 4 years ago