Alternatives and similar repositories for StudyCodeQLpy

Users that are interested in StudyCodeQLpy are comparing it to the libraries listed below

• lz520520 / java-object-searcher
  ☆20Updated 5 months ago
• Ape1ron / SpringAopInDeserializationDemo1
  在spring-aop中新发现的反序列化gadget-chain
  ☆50Updated 6 months ago
• SummerSec / BlogPapers
  <a href="sumsec.me"><img src="https://readme-typing-svg.demolab.com?font=Fira+Code&size=24&pause=1000&color=FDFDFD&background=13797800&ce…
  ☆54Updated this week
• 0xrumble / BytecodeScreen
  ☆50Updated 2 years ago
• H3rmesk1t / Fastjson-Gadgets-Automatic-Scanner
  Automatically scan jar packages by using ast to find fastjson gadgets. In particular, this project is limited to mining Gadgets that may …
  ☆50Updated 3 years ago
• TonyD0g / JSPHunter
  基于污点分析和模拟栈帧技术的JSP Webshell检测
  ☆45Updated last month
• sf197 / MemoryShellHunter
  Java Agent memory horse scanner combined with Call Graph modus
  ☆64Updated 2 years ago
• welk1n / FastjsonPocs
  一些结合第三方组件的Fastjson POC，在1.2.48以后版本中陆续被添加至黑名单。
  ☆56Updated 5 years ago
• bluE0a / java-memshell-scanner
  添加Connector内存马与ws内存马检测逻辑
  ☆16Updated 2 years ago
• Rvn0xsy / DumperAnalyze
  通过JavaAgent与Javassist技术对JVM加载的类对象进行动态插桩，可以做一些破解、加密验证的绕过等操作
  ☆115Updated last year
• KpLi0rn / DeserializeAll
  一个简单的批量反编译jar包的小脚本
  ☆41Updated 3 years ago
• yyhuni / shiroMemshell
  利用shiro反序列化注入冰蝎内存马
  ☆35Updated 3 years ago
• lz2y / DubboPOC
  Apache Dubbo漏洞测试Demo及其POC
  ☆61Updated 2 years ago
• freeFV / ShortPayload
  如何将Java反序列化Payload极致缩小
  ☆56Updated 3 years ago
• flowerwind / AutoGenerateXalanPayload
  cve-2022-34169 延伸出的Jdk Xalan的payload自动生成工具，可根据不同的Jdk生成出其所对应的xslt文件
  ☆92Updated 2 years ago
• woodpecker-appstore / rmi-deserialization-vuldb
  Java RMI反序列化漏洞插件
  ☆48Updated 4 years ago
• ph4ntonn / inject_und3ad
  👻inject_und3ad -- 蚁剑(AntSword)插件
  ☆24Updated 5 years ago
• bitterzzZZ / CVE-2021-43297-POC
  CVE-2021-43297 POC，Apache Dubbo<= 2.7.13时可以实现RCE
  ☆38Updated 3 years ago
• knightswd / NoPacScan
  NoPacScan is a CVE-2021-42287/CVE-2021-42278 Scanner,it scan for more domain controllers than other script
  ☆90Updated 3 years ago
• 0linlin0 / Java
  java
  ☆54Updated 2 years ago
• pacemrc / VulDebug
  Java漏洞调试分析集合
  ☆90Updated last year
• Al1ex / MysqlHoneypot
  MysqlHoneypot
  ☆23Updated 3 years ago
• woodpecker-framework / woodpecker-requests
  woodpecker-framework框架http发包库,专门为漏洞检测与利用场景设计。
  ☆67Updated 2 years ago
• ax1sX / SpringSecurity
  A list for Spring Security
  ☆124Updated last year
• turn1tup / JvmRaspBypass
  ☆14Updated 2 years ago
• woodpecker-appstore / java-memshell-generator
  Java 内存马生成插件
  ☆54Updated 2 years ago
• woodpecker-appstore / springboot-vuldb
  ☆69Updated 4 years ago
• ffadd / JNDIKit
  JNDI/LDAP注入利用工具，对命令进行两种编码，支持多种绕过高版本JDK的方式（参考大佬代码造的轮子）
  ☆44Updated 3 years ago
• 8ypass / weblogicExploit
  weblogic历史漏洞利用工具
  ☆91Updated 3 years ago
• hosch3n / FastjsonVulns
  [fastjson 1.2.80] CVE-2022-25845 aspectj fileread & groovy remote classload
  ☆92Updated 2 years ago