Alternatives and similar repositories for awesome-java-security-checklist

Users that are interested in awesome-java-security-checklist are comparing it to the libraries listed below

• fengupupup / RocB
  鹏 RocB - Java代码审计IDEA插件 SAST
  ☆150Updated 4 years ago
• zongdeiqianxing / hscan
  集成crawlergo、xray、dirsearch、nmap等工具的src漏洞挖掘工具，使用docker封装运行；使用oneforall自动遍历子域名并扫描；
  ☆115Updated 4 years ago
• Wh0ale / penetration
  渗透 超全面的渗透资料💯 包含：0day，xss，sql注入，提权……
  ☆65Updated 7 years ago
• mstxq17 / VunHunterTips
  漏洞挖掘技巧及其一些工具集成
  ☆138Updated 3 years ago
• lucksec / Spring-Cloud-Gateway-CVE-2022-22947
  CVE-2022-22947
  ☆220Updated 3 years ago
• cwkiller / unauthorized-check
  扫描常见未授权访问（redis、mongodb、memcached、elasticsearch、zookeeper、ftp、CouchDB、docker、Hadoop）
  ☆190Updated 5 years ago
• flowerwind / JspFinder
  一款通过污点追踪发现Jsp webshell的工具(A tool to find Jsp Webshell through stain tracking)
  ☆178Updated 3 years ago
• timwhitez / Frog-Auth
  🐸Unauthorized Detection Framework未授权访问检测框架
  ☆161Updated last year
• mysticbinary / WebBug
  Java编写的Web漏洞靶场
  ☆88Updated 3 years ago
• theLSA / burp-unauth-checker
  burpsuite extension for check unauthorized vulnerability
  ☆234Updated 4 years ago
• xhycccc / Struts2-Vuln-Demo
  Struts2漏洞实例源码
  ☆208Updated 4 years ago
• Echocipher / Pentest-Wiki
  规范渗透测试报告中的漏洞名称以及修复建议
  ☆145Updated 6 years ago
• SewellDinG / Pentest-Notes
  📖《内网安全攻防-渗透测试实战指南》
  ☆123Updated 5 years ago
• NyDubh3 / Pentesting-Active-Directory-CN
  域渗透脑图中文翻译版
  ☆279Updated 4 years ago
• lakemoon602 / snail2.0
  批量检测敏感信息泄露
  ☆60Updated 5 years ago
• starnightcyber / Emergency-Material-Collection
  应急响应资料收集
  ☆90Updated 5 years ago
• Wker666 / wJa
  java decompile audit tools
  ☆228Updated 2 years ago
• QdghJ / burp_data_collector
  A Burp plugin that collects Burp request parameters, directories, paths and file names into the database for sorting
  ☆91Updated 4 years ago
• Ppsoft1991 / CodeReviewTools
  通过正则搜索、批量反编译特定Jar包中的class名称
  ☆316Updated 3 years ago
• p1g3 / CORS-SCAN
  扫描存在CORS跨域漏洞的网站。
  ☆92Updated 6 years ago
• Y4er / fastjson-bypass-autotype-1.2.68
  fastjson bypass autotype 1.2.68 with Throwable and AutoCloseable.
  ☆227Updated 2 years ago
• Echocipher / Subdomain-Takeover
  一个子域名接管检测工具
  ☆144Updated 4 years ago
• Maskhe / vuls
  收集整理一些漏洞，利用方法，poc等等，方便快速查阅
  ☆59Updated 4 years ago
• LFYSec / ActuatorExploit
  SpringBoot Actuator未授权自动化利用，支持信息泄漏/RCE
  ☆231Updated 4 years ago
• pmiaowu / BurpReflectiveXssMiao
  一款基于burp的反射xss检测插件
  ☆155Updated 3 years ago
• Jewel591 / Vulnerability-Summary
  常见漏洞描述、漏洞影响及修复建议，为规范的渗透测试报告提供参考 | Common vulnerability descriptions, vulnerability impacts and remediation recommendations for standardi…
  ☆55Updated 4 years ago
• javaweb-rasp / javaweb-vuln
  RASP测试靶场
  ☆174Updated 2 years ago
• EvilAnne / 2020-Read-article
  2020年网上阅读过的文章记录
  ☆40Updated 4 years ago
• ggg4566 / SQLEXP
  SQL 注入利用工具，存在waf的情况下自定义编写tamper脚本 dump数据
  ☆290Updated 5 years ago
• bigsizeme / shiro-check
  Shiro反序列化回显利用、内存shell、检查 Burp插件
  ☆217Updated 3 years ago