Alternatives and similar repositories for awesome-java-security-checklist:

Users that are interested in awesome-java-security-checklist are comparing it to the libraries listed below

• fengupupup / RocB
  鹏 RocB - Java代码审计IDEA插件 SAST
  ☆147Updated 3 years ago
• p1g3 / Fastjson-Scanner
  a burp extension to find where use fastjson
  ☆165Updated 4 years ago
• mtxiaowangzi / CAFJE
  又一个Java Web代码审计工具
  ☆99Updated 6 years ago
• mysticbinary / WebBug
  Java编写的Web漏洞靶场
  ☆82Updated 3 years ago
• xhycccc / Struts2-Vuln-Demo
  Struts2漏洞实例源码
  ☆205Updated 4 years ago
• Wh0ale / penetration
  渗透 超全面的渗透资料💯 包含：0day，xss，sql注入，提权……
  ☆64Updated 6 years ago
• cdhe / JavaSecInterview
  打造最强的Java安全研究与安全开发面试题库，帮助师傅们找到满意的工作
  ☆177Updated 3 years ago
• threedr3am / ysoserial
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.优化了一些东西。
  ☆215Updated 3 years ago
• Er1cccc / ACAF
  Auto Code Audit Framework for Java
  ☆96Updated 3 years ago
• Y4er / fastjson-bypass-autotype-1.2.68
  fastjson bypass autotype 1.2.68 with Throwable and AutoCloseable.
  ☆223Updated 2 years ago
• LFYSec / ActuatorExploit
  SpringBoot Actuator未授权自动化利用，支持信息泄漏/RCE
  ☆232Updated 4 years ago
• Echocipher / Pentest-Wiki
  规范渗透测试报告中的漏洞名称以及修复建议
  ☆144Updated 5 years ago
• timwhitez / Frog-Auth
  🐸Unauthorized Detection Framework未授权访问检测框架
  ☆158Updated last year
• starnightcyber / Emergency-Material-Collection
  应急响应资料收集
  ☆88Updated 4 years ago
• flowerwind / JspFinder
  一款通过污点追踪发现Jsp webshell的工具(A tool to find Jsp Webshell through stain tracking)
  ☆175Updated 3 years ago
• WYSyyyyyy / vulnReport
  安服自动化脚本：包括 Nessus、天境主机漏洞扫描6.0、APPscan、awvs等漏洞报告的整理，Google翻译等
  ☆147Updated 3 years ago
• bigsizeme / shiro-check
  Shiro反序列化回显利用、内存shell、检查 Burp插件
  ☆216Updated 2 years ago
• potats0 / shiroPoc
  ☆320Updated 3 years ago
• zongdeiqianxing / hscan
  集成crawlergo、xray、dirsearch、nmap等工具的src漏洞挖掘工具，使用docker封装运行；使用oneforall自动遍历子域名并扫描；
  ☆117Updated 3 years ago
• kezibei / Urldns
  ☆310Updated 6 months ago
• zema1 / ysoserial
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆353Updated 2 years ago
• SPuerBRead / Bridge
  无回显漏洞测试辅助平台，平台使用Java编写，提供DNSLOG，HTTPLOG等功能，辅助渗透测试过程中无回显漏洞及SSRF等漏洞的验证和利用。
  ☆382Updated last year
• lucksec / Spring-Cloud-Gateway-CVE-2022-22947
  CVE-2022-22947
  ☆219Updated 2 years ago
• DSO-Lab / pocscan
  ☆113Updated 4 years ago
• zxcvbn001 / CodeReview
  代码审计总结
  ☆80Updated 3 years ago
• pmiaowu / BurpReflectiveXssMiao
  一款基于burp的反射xss检测插件
  ☆152Updated 3 years ago
• ffffffff0x / JVWA
  java 代码审计学习靶场
  ☆108Updated last year
• ydnzol / memshell
  Tomcat 冰蝎内存马。
  ☆211Updated 4 years ago
• ice-doom / CodeQLRule
  个人使用CodeQL编写的一些规则
  ☆175Updated 2 years ago
• javaweb-rasp / javaweb-vuln
  RASP测试靶场
  ☆162Updated 2 years ago