A Java Rasp Demo
☆103Dec 2, 2021Updated 4 years ago
Alternatives and similar repositories for javaopenrasp
Users that are interested in javaopenrasp are comparing it to the libraries listed below
Sorting:
- ☆10Jan 4, 2015Updated 11 years ago
- ☆28Jul 18, 2020Updated 5 years ago
- a passive scanner based on Mitmproxy and Arachni☆108Aug 17, 2017Updated 8 years ago
- 简单实现的 Java RASP☆35Oct 14, 2020Updated 5 years ago
- 备份下比赛附件☆22Jan 23, 2023Updated 3 years ago
- 专注于JVM的运行时防御系统RASP☆296Jun 14, 2024Updated last year
- Golang bindings for libinjection☆11May 22, 2015Updated 10 years ago
- Python 探针实现原理☆29Apr 6, 2016Updated 9 years ago
- 🔥Open source RASP solution☆2,956Oct 2, 2025Updated 5 months ago
- 基于JVM-Sandbox实现RASP安全监控防护☆52Aug 8, 2023Updated 2 years ago
- ☆38Oct 26, 2021Updated 4 years ago
- OpenRASP 漏洞测试环境☆315Oct 31, 2023Updated 2 years ago
- 《Spring漏洞研究》☆47Apr 26, 2022Updated 3 years ago
- Using Windows Hook to make a CLI WebShellKill☆45Feb 4, 2019Updated 7 years ago
- JAVA IAST Example☆49Dec 13, 2021Updated 4 years ago
- ☆14Jan 7, 2019Updated 7 years ago
- Collection of bypass gadgets to extend and wrap ysoserial payloads☆387Apr 16, 2022Updated 3 years ago
- A proof of concept that demonstrates asynchronous scanning for Java deserialization bugs☆55Mar 27, 2017Updated 8 years ago
- JavaAgent内存马☆17Jun 15, 2021Updated 4 years ago
- IAST 灰盒扫描工具☆447Jul 19, 2022Updated 3 years ago
- BkScanner 分布式、插件化web漏洞扫描器☆104Jan 15, 2016Updated 10 years ago
- ☆96Nov 2, 2023Updated 2 years ago
- rmi、jndi、ldap、jrmp、jmx、jms一些demo测试☆311Jun 17, 2022Updated 3 years ago
- Exploit PoC for Spring RCE issue (CVE-2011-2894)☆44Dec 17, 2023Updated 2 years ago
- A declarative static analysis tool for jvm bytecode based Datalog like CodeQL☆345Jan 6, 2024Updated 2 years ago
- Native Java serialization filter blacklist for common gadgets☆20Sep 12, 2019Updated 6 years ago
- --= Xt9 - Anti - Rootkit =-- beta v0.11 by xti9er☆15Dec 16, 2020Updated 5 years ago
- Java Agent is a Java application probe of DongTai IAST, which collects method invocation data during runtime of Java application by dynam…☆697Dec 25, 2023Updated 2 years ago
- 用于还原svn仓库,支持1.6,1.7☆26Jun 3, 2016Updated 9 years ago
- My AI security testing projects☆41Jan 16, 2019Updated 7 years ago
- fastjson remote code execute poc 直接用intellij IDEA打开即可 首先编译得到Test.class,然后运行Poc.java☆403Dec 16, 2022Updated 3 years ago
- WEB 跨域postMessage() 漏洞挖掘工具,基本原理:使用AJAX 获取页面代码,结合iframe 和data 协议构造测试环境,然后在iframe 下的window.onmessage 中插入hook 监控onmessage 的参数,最后通过能否被原来的onme…☆11Sep 13, 2016Updated 9 years ago
- python audit tool 审计 注入 inject☆182Feb 25, 2016Updated 10 years ago
- 当死去的记忆突然开始攻击我,我终于想起了我还写过一款十分十分垃圾的 rasp 靶场。☆88Jul 21, 2022Updated 3 years ago
- RCE Exploit PoC for Spring based RESTFul APIs using XStream as Unmarshaler☆20Dec 24, 2013Updated 12 years ago
- 一个利用ASM对字节码进行污点传播分析的静态代码审计应用(添加了大量代码注释,适合大家进行源码学习)。也加入了挖掘Fastjson反序列化gadget chains和SQLInject(JdbcTemplate、MyBatis、JPA、Hibernate、原生jdbc等)静…☆458Mar 24, 2022Updated 3 years ago
- A byte code analyzer for finding deserialization gadget chains in Java applications☆1,080Jun 15, 2021Updated 4 years ago
- Taint is a PHP extension, used for detecting XSS codes☆615Jul 1, 2024Updated last year
- Advance URL Fuzzing + Whois Domain running on python☆18Nov 8, 2022Updated 3 years ago