Alternatives and similar repositories for StudyCodeQLpy

Users that are interested in StudyCodeQLpy are comparing it to the libraries listed below

• SummerSec / BlogPapers
  <a href="sumsec.me"><img src="https://readme-typing-svg.demolab.com?font=Fira+Code&size=24&pause=1000&color=FDFDFD&background=13797800&ce…
  ☆54Updated this week
• 0xrumble / BytecodeScreen
  ☆50Updated 2 years ago
• H3rmesk1t / Fastjson-Gadgets-Automatic-Scanner
  Automatically scan jar packages by using ast to find fastjson gadgets. In particular, this project is limited to mining Gadgets that may …
  ☆48Updated 3 years ago
• Ape1ron / SpringAopInDeserializationDemo1
  在spring-aop中新发现的反序列化gadget-chain
  ☆51Updated 8 months ago
• lz520520 / java-object-searcher
  ☆21Updated 6 months ago
• bitterzzZZ / CVE-2021-43297-POC
  CVE-2021-43297 POC，Apache Dubbo<= 2.7.13时可以实现RCE
  ☆38Updated 3 years ago
• Rvn0xsy / DumperAnalyze
  通过JavaAgent与Javassist技术对JVM加载的类对象进行动态插桩，可以做一些破解、加密验证的绕过等操作
  ☆116Updated last year
• lz2y / DubboPOC
  Apache Dubbo漏洞测试Demo及其POC
  ☆62Updated 2 years ago
• yyhuni / shiroMemshell
  利用shiro反序列化注入冰蝎内存马
  ☆35Updated 3 years ago
• flowerwind / AutoGenerateXalanPayload
  cve-2022-34169 延伸出的Jdk Xalan的payload自动生成工具，可根据不同的Jdk生成出其所对应的xslt文件
  ☆90Updated 2 years ago
• woodpecker-appstore / rmi-deserialization-vuldb
  Java RMI反序列化漏洞插件
  ☆49Updated 4 years ago
• welk1n / FastjsonPocs
  一些结合第三方组件的Fastjson POC，在1.2.48以后版本中陆续被添加至黑名单。
  ☆56Updated 5 years ago
• TonyD0g / JSPHunter
  基于污点分析和模拟栈帧技术的JSP Webshell检测
  ☆47Updated 2 months ago
• turn1tup / JvmRaspBypass
  ☆14Updated 2 years ago
• freeFV / ShortPayload
  如何将Java反序列化Payload极致缩小
  ☆65Updated 3 years ago
• KpLi0rn / DeserializeAll
  一个简单的批量反编译jar包的小脚本
  ☆42Updated 3 years ago
• woodpecker-framework / woodpecker-requests
  woodpecker-framework框架http发包库,专门为漏洞检测与利用场景设计。
  ☆67Updated 2 years ago
• Al1ex / MysqlHoneypot
  MysqlHoneypot
  ☆23Updated 3 years ago
• novysodope / RWAL-Scan
  Rich woman scanner --富婆扫描器
  ☆35Updated 3 years ago
• ffadd / JNDIKit
  JNDI/LDAP注入利用工具，对命令进行两种编码，支持多种绕过高版本JDK的方式（参考大佬代码造的轮子）
  ☆44Updated 3 years ago
• ph4ntonn / inject_und3ad
  👻inject_und3ad -- 蚁剑(AntSword)插件
  ☆24Updated 6 years ago
• Boogipop / Netty-WebFlux-Memshell
  Netty/WebFlux 内存马
  ☆25Updated last year
• knightswd / NoPacScan
  NoPacScan is a CVE-2021-42287/CVE-2021-42278 Scanner,it scan for more domain controllers than other script
  ☆90Updated 3 years ago
• woodpecker-appstore / springboot-vuldb
  ☆69Updated 4 years ago
• longofo / PaddingOracleAttack-Shiro-721
  Shiro-721 Padding Oracle Attack
  ☆73Updated 4 years ago
• woodpecker-appstore / java-memshell-generator
  Java 内存马生成插件
  ☆54Updated 2 years ago
• 7ten7 / WorkflowServiceXml-Exploit
  ☆31Updated 4 years ago
• su18 / JSP-Webshells
  Collect JSP webshell of various implementation methods. 收集JSP Webshell的各种姿势
  ☆15Updated 3 years ago
• yumusb / Yapi_Rce
  Yapi RCE漏洞批量验证与伪交互SHELL
  ☆42Updated 4 years ago
• HackJava / JNDI
  《JNDI-深入理解Java万恶之源》
  ☆38Updated last year