zangcc / Java_Risky_FunctionsLinks
Java 代码审计-存在风险的函数汇总。方便我们日常代码审计过程中快速定位漏洞点,配合静态代码分析工具做到事半功倍。Java code audit - summary of risky functions. It is convenient for us to quickly locate vulnerability points in the daily code audit process, and cooperate with static code analysis tools to achieve twice the result with half the effort.
☆31Updated last year
Alternatives and similar repositories for Java_Risky_Functions
Users that are interested in Java_Risky_Functions are comparing it to the libraries listed below
Sorting:
- Java漏洞调试分析集合☆91Updated last year
- 本工具的定位是快速生成Java安全相关的Payload,如内存马、反序列化链、JNDI url、Fastjson等,动态生成相关Payload,并附带相应的文档。☆93Updated 7 months ago
- GO语言漏洞靶场 GIN框架 支持docker一键启动☆76Updated 2 years ago
- Java 内存马生成插件☆54Updated 2 years ago
- 《JNDI-深入理解Java万恶之源》☆38Updated last year
- JSHunter-一款针对于前端的未授权访�问扫描工具☆72Updated 5 months ago
- Apache RocketMQ 远程代码执行漏洞(CVE-2023-33246) Exploit☆82Updated 2 years ago
- Java命令行文件监控小工具(代码审计)☆103Updated 3 years ago
- MemShell List☆88Updated 2 years ago
- 某软最新公开gadgegt,新加入不出网利用。☆80Updated last year
- 基于ysoserial扩展命令执行结果回显,生成冰蝎内存马☆91Updated 2 years ago
- 基于 Json 、自定义Go脚本的多协程验证扫描器,用于快速验证目标是否存在该漏洞或深层次利用。☆41Updated 11 months ago
- 利用代理驱动绕过JDBC Attack检测☆134Updated 3 months ago
- 检测查杀java内存马☆112Updated last year
- 用Go+Fyne开发的,展示JAVA序列化流以及集成一键插入脏数据,UTF过长编码绕WAF(Utf OverLoad Encoding),修改类SerializeVersionUID功能的图形化工具。☆116Updated 8 months ago
- 一个简单的批量反编译jar包的小脚本☆42Updated 3 years ago
- ☆33Updated 3 years ago
- burp手工检测fastjson辅助☆89Updated last year
- ☆24Updated 7 months ago
- burpsuite插件-被动无感识别指纹-主动poc扫描☆27Updated last year
- ☆25Updated 3 years ago
- 如何将Java反序列化Payload极致缩小☆65Updated 3 years ago
- 工控设备信息识别工具箱☆56Updated last year
- Java安全学习历程☆41Updated 2 years ago
- FofaMap云查询版是基于C/S架构打造的Fofa数据采集器,仅需配置好一个服务端,即可实现多个客户端同时在线查询,其客户端支持FofaMap国庆版全部功能。☆38Updated 2 years ago
- iis高版本短文件名猜解脚本,适用于iis7.5~10.x版本的iis中间件。☆63Updated 6 months ago
- 一款BurpSuite插件,辅助手工测试☆72Updated 2 years ago
- 基于Agent技术实现的Java内存马查杀、防护工具。☆89Updated last year
- 一个IDEA插件:一键收集项目中所有jar包依赖的工具插件。遍历项目目录收集所有jar文件,复制到all-in-one文件夹,并自动添加为项目库。☆49Updated last month
- 一款基于JAVA编写的插件化漏洞利用工具☆46Updated 2 months ago