zangcc / Java_Risky_FunctionsLinks
Java 代码审计-存在风险的函数汇总。方便我们日常代码审计过程中快速定位漏洞点,配合静态代码分析工具做到事半功倍。Java code audit - summary of risky functions. It is convenient for us to quickly locate vulnerability points in the daily code audit process, and cooperate with static code analysis tools to achieve twice the result with half the effort.
☆30Updated 11 months ago
Alternatives and similar repositories for Java_Risky_Functions
Users that are interested in Java_Risky_Functions are comparing it to the libraries listed below
Sorting:
- nacos api bypass & jwt bypass & get all configs☆42Updated last year
- 云函数扫描器☆58Updated last year
- FofaMap云查询版是基于C/S架构打造的Fofa数据采集器,仅需配置好一个服务端,即可实现多个客户端同时在线查询,其客户端支持FofaMap国庆版全部功能 。☆38Updated 2 years ago
- MemShell List☆82Updated last year
- 哥斯拉webshell管理工具的插件,用于连接websocket型webshell☆125Updated last year
- 基于 Json 、自定义Go脚本的多协程验证扫描器,用于快速验证目标是否存在该漏洞或深层次利用。☆39Updated 7 months ago
- 一个简单的批量反编译jar包的小脚本☆39Updated 3 years ago
- 基于ysoserial扩展命令执行结果回显,生成冰蝎内存马☆90Updated last year
- 工控设备信息识别工具箱☆55Updated last year
- 《ASPX安全-只有ASPX安全才能拯救.NET》Only ASPX Security Can Save The NET.☆35Updated 2 years ago
- CVE-2023-46604☆63Updated last year
- 如果反序列化过程中使用resolveClass拉黑了TemplatesImpl如何绕过☆51Updated last year
- 基于BurpShiroPassiveScan修改增加了Xray回显链生成☆54Updated 2 years ago
- 帆软报表漏洞检测工具☆93Updated 2 weeks ago
- iis高版本短文件名猜解脚本,适用于iis7.5~10.x版本的iis中间件。☆60Updated 2 months ago
- 用Go+Fyne开发的,展示JAVA序列化流以及集成一键插入脏数据,UTF过长编码绕WAF(Utf OverLoad Encoding),修改类SerializeVersionUID功能的图形化工具。☆112Updated 5 months ago
- 右键检测图片是否存在Exif漏洞☆31Updated 2 years ago
- 直接导入需要碰撞的IP和域名,工具多线程碰撞速度快,访问状态码200成功时则会高亮。☆53Updated last year
- Java 内存马生成插件☆53Updated 2 years ago
- burp手工检测fastjson辅助☆86Updated last year
- 代码审计工具,用于监听mysql日志,支持mysql8.0以上和以下的版本。☆34Updated 3 years ago
- Apache RocketMQ 远程代码执行漏洞(CVE-2023-33246) Exploit☆81Updated 2 years ago
- 基于load data逻辑漏洞的Mysql蜜罐☆20Updated 2 years ago
- Yonyou-UNSERIALIZE,用友NC 反序列化检查工具,批量检测用友NC 反序列化☆50Updated last year
- 某软最新公开gadgegt,新加入不出网利用。☆69Updated 9 months ago
- ☆35Updated 3 years ago
- 电子书籍-代码审计-域渗透(内网思路)-免杀-云安全☆46Updated last year
- 基于Agent技术实现的Java内存马查杀、防护工具。☆85Updated 11 months ago
- burpsuite插件-被动无感识别指纹-主动poc扫描☆27Updated 9 months ago
- Java命令行文件监控小工具(代码审计)☆102Updated 3 years ago