《漏洞全解》该项目不提供任何的POC与EXP,仅仅分享各种机缘巧合下所产生的漏洞的分析。
☆26Aug 30, 2023Updated 2 years ago
Alternatives and similar repositories for VulnAnalysis
Users that are interested in VulnAnalysis are comparing it to the libraries listed below
Sorting:
- powershell 混淆 生成工具☆24Nov 10, 2024Updated last year
- 利用sudo提权,只针对cnetos7☆29Nov 3, 2022Updated 3 years ago
- proof-of-concept for generating Java deserialization payload | Proxy MemShell☆221Jun 8, 2024Updated last year
- Java漏洞调试分析集合☆91Mar 11, 2024Updated last year
- JWT密码爆破以及生成工具,可以使用字典或者暴力破解JWT,支持多线程爆破,使用GO语言编写,效率非常高,也可以生成有密码或者没有密码的JWT。☆29Sep 26, 2025Updated 5 months ago
- XuanQiong(玄穹),一款高性能的开源漏洞库平台,中小型团队自建漏洞库的合适之选。支持漏洞提交、漏洞审核、漏洞搜索、漏洞排行榜、消息推送等功能。☆76Dec 3, 2024Updated last year
- JAVA 安全靶场,IAST 测试用例,JAVA漏洞复现,代码审计,SAST测试用例,安全扫描(主动和被动),JAVA漏洞靶场,RASP测试用例 ; Java Security Testbed, IAST Test Cases, Java Vulnerability R…☆272Sep 6, 2024Updated last year
- Rshell-client☆49Sep 2, 2025Updated 5 months ago
- 个人学习Java安全的笔记☆129May 5, 2023Updated 2 years ago
- This is the repository for JÄk. I created it as prototype during my masterthesis.☆31Jan 22, 2018Updated 8 years ago
- protoscanner是一个使用纯Go编写的协议识别仓库,脱胎于NMAP☆28Aug 30, 2023Updated 2 years ago
- 不定期分享一些html小工具☆27Sep 11, 2025Updated 5 months ago
- 记录自己学习Java安全的过程,无技术含量 。☆30Aug 15, 2023Updated 2 years ago
- 纯 Java 实现的 MySQL Fake Server | 支持 GUI 版和命令行版 | 支持反序列化和文件读取的利用方式 | 支持常见的 GADGET 和自定义 GADGET 数据 | 根据目标环境自动生成匹配的 PAYLOAD | 支持 PGSQL 和 DERBY …☆824Sep 18, 2023Updated 2 years ago
- EDR绕过demo☆294Jan 14, 2024Updated 2 years ago
- 个人安全开发代码缩编:包括但不扩展渗透测试,资产收集,大规模裂缝扫描器,网络安全相关资料文档☆34Oct 25, 2019Updated 6 years ago
- Common Exploitation Techniques for Java RCE Vulnerabilities in Real-World Scenarios | 实战场景较通用的 Java Rce 相关漏洞的利用方式☆545Mar 6, 2025Updated 11 months ago
- 本项目是记录自己在Java代码审计过程中遇到的一些优秀文章内容,以及涉及到的Java项目源文件,汇总起来方便初学者下载分析。☆31Jun 14, 2022Updated 3 years ago
- CloudPathSniffer is an open-source, easy to use and extensible Cloud Anomaly Detection platform designed to help security teams to find h…☆13Nov 30, 2023Updated 2 years ago
- CScan 是一个基于Go语言开发的网络空间资产搜索工具,支持多个主流网络空间搜索引擎:FOFA Hunter Quake,能够快速搜索IP、域名等资产信息。☆42Jan 16, 2025Updated last year
- Exchange 用户名爆破☆37Jan 5, 2025Updated last year
- java-agent内存马一键注入服务器维权工具,支持自定义路径、校验和内存马内容。☆126Nov 4, 2025Updated 3 months ago
- A list for Web Security and Code Audit☆1,212Dec 3, 2024Updated last year
- ☆38Oct 26, 2021Updated 4 years ago
- ☆15Jul 21, 2025Updated 7 months ago
- 基于bpmn 2.0协议实现的工作流引擎☆12Jan 17, 2024Updated 2 years ago
- 基金管理系统后台代码☆10Jul 3, 2017Updated 8 years ago
- 安全API接口测试Demo,围绕时间戳,ticket,签名三个参数☆12Jan 5, 2021Updated 5 years ago
- black Ip lists, dorks-collection☆16Feb 1, 2026Updated last month
- 递归寻找JS泄露的路径。Recursively search for the paths of JS Files.For pentest☆11Sep 30, 2024Updated last year
- A Go library for generating Java deserialization payloads.☆155Sep 9, 2024Updated last year
- 一个简单的代理浏览器插件☆20Feb 9, 2026Updated 2 weeks ago
- 基于rust的免杀、捆绑框架☆159Dec 28, 2022Updated 3 years ago
- 检测查杀java内存马☆127Dec 5, 2023Updated 2 years ago
- Interactive Shells like PsExec, but in Go☆16Apr 30, 2025Updated 10 months ago
- 哥斯拉源码-v3.03-godzilla☆11May 12, 2022Updated 3 years ago
- ☆12May 29, 2025Updated 9 months ago
- Pghostile is a tool to automate the exploitation of PostgreSQL® specific vulnerabilities that could lead to privilege escalation. It can …☆11Aug 17, 2023Updated 2 years ago
- 静态分析基础教程☆180Jan 3, 2026Updated last month