zxcv0221/JavaSec external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

zxcv0221/JavaSec

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/zxcv0221/JavaSec)

Close

zxcv0221 / JavaSecView on GitHubMore

• External links
• Readme badge

Java安全学习历程

☆42Jul 7, 2023Updated 2 years ago

Alternatives and similar repositories for JavaSec

Users that are interested in JavaSec are comparing it to the libraries listed below

• dota-st / JavaSec

  View on GitHub
  个人学习Java安全的笔记
  ☆130May 5, 2023Updated 2 years ago
• suizhibo / Tao

  View on GitHub
  Tao（道）一款用于java语言函数调用关系生成的工具，致力于提高java代码审计效率。
  ☆11Jul 2, 2024Updated last year
• p1n93r / javasec

  View on GitHub
  Java安全相关，目前主要是CC链研究
  ☆10Sep 1, 2022Updated 3 years ago
• evilAdan0s / Cobalt-Strike-Develop-Note

  View on GitHub
  Cobalt Strike二次开发笔记，记录功能和思路
  ☆16Jul 9, 2022Updated 3 years ago
• LuckyRiver99 / fscanDC

  View on GitHub
  fscan结果优化，更新DC域筛选
  ☆10Nov 21, 2023Updated 2 years ago
• tpt11fb / SpringVulScan

  View on GitHub
  burpsuite 的Spring漏洞扫描插件。SpringVulScan：支持检测：路由泄露|CVE-2022-22965|CVE-2022-22963|CVE-2022-22947|CVE-2016-4977
  ☆154Jan 23, 2023Updated 3 years ago
• TonyD0g / JavaHacker

  View on GitHub
  记录自己学习Java安全的过程,无技术含量 。
  ☆30Aug 15, 2023Updated 2 years ago
• ax1sX / Automation-in-Java-Security

  View on GitHub
  ☆10Jul 21, 2022Updated 3 years ago
• EASY233 / BpScan

  View on GitHub
  一款用于辅助渗透测试工程师日常渗透测试的Burp被动漏扫插件
  ☆242Nov 25, 2022Updated 3 years ago
• 1in9e / icp-domains

  View on GitHub
  输入一个域名，输出ICP备案所有关联域名
  ☆257Dec 4, 2022Updated 3 years ago
• Weik1 / scan_screenshot

  View on GitHub
  golang写的批量对目标网站进行截图的小工具，适合目标资产比较多时，快速定位薄弱点。
  ☆33Oct 14, 2022Updated 3 years ago
• LaNyer640 / java_asm_parse

  View on GitHub
  一个java代码审计辅助工具
  ☆29Nov 2, 2022Updated 3 years ago
• fKzhangsa / FilterJs

  View on GitHub
  Burp的JS API接口过滤插件
  ☆126Dec 27, 2023Updated 2 years ago
• aw220 / InOne

  View on GitHub
  一个BurpSuite插件，想法是简化日常挖洞流程
  ☆14Jun 28, 2022Updated 3 years ago
• novysodope / ST2Scanner

  View on GitHub
  Struts2漏洞扫描 Burp插件
  ☆131Mar 21, 2023Updated 2 years ago
• fengzhouc / FuzzPayloadGennerator

  View on GitHub
  Burp之Intruder的物尽其用插件
  ☆85Mar 10, 2023Updated 3 years ago
• xiaopan233 / GenerateNoHard

  View on GitHub
  本工具的定位是快速生成Java安全相关的Payload，如内存马、反序列化链、JNDI url、Fastjson等，动态生成相关Payload，并附带相应的文档。
  ☆93Feb 25, 2025Updated last year
• HackingCost / AD_Pentest

  View on GitHub
  红队|域渗透重要漏洞汇总(持续更新)
  ☆290Dec 23, 2022Updated 3 years ago
• shadowabi / Serverless_PortScan

  View on GitHub
  利用云函数实现端口扫描
  ☆14Nov 17, 2025Updated 4 months ago
• WAY29 / javaGGC

  View on GitHub
  javaGGC for generate commons.collections gadget chain
  ☆12Nov 10, 2021Updated 4 years ago
• A0WaQ4 / BurpText4ShellScan

  View on GitHub
  Text4Shell的burp被动扫描插件
  ☆36Dec 29, 2022Updated 3 years ago
• fynch3r / fynch3r.github.io

  View on GitHub
  Java安全路上的学习笔记
  ☆84Feb 24, 2023Updated 3 years ago
• h3h3qaq / JavaDecompiler

  View on GitHub
  一个基于 Vineflower 引擎的多线程 Java 批量反编译工具，支持快速处理大量的 class 文件和 JAR 文件。
  ☆58Apr 28, 2025Updated 10 months ago
• qi4L / Ysoserial-go

  View on GitHub
  A Go library for generating Java deserialization payloads.
  ☆155Sep 9, 2024Updated last year
• just0rg / Security-Interview

  View on GitHub
  安全方向知识点(包含web攻防、java攻防、企业安全、内网/域、提权、免杀)
  ☆46Dec 25, 2024Updated last year
• Xsw6 / JavaSec

  View on GitHub
  ☆29Feb 2, 2024Updated 2 years ago
• zxcvbn001 / CodeReview

  View on GitHub
  代码审计总结
  ☆85Sep 1, 2021Updated 4 years ago
• FeiNiao / ueditor-fileupload-getshell

  View on GitHub
  ueditor文本编辑器文件上传漏洞，exp，可getshell
  ☆16Apr 14, 2023Updated 2 years ago
• 0xf4n9x / CDGXStreamDeserRCE

  View on GitHub
  亿赛通电子文档安全管理系统XStream反序列化漏洞任意文件上传利用
  ☆120Aug 9, 2024Updated last year
• shanshanerxi / Memory-horse

  View on GitHub
  关于内存马的学习研究支持新手从0到1，从内存马原理，内存马植入 内存马检测 到内存马防御与内存马应急以及内存马查杀全系列java内存马/php/.net/c++/python 喜欢可以点个star 后续持续更新
  ☆141Apr 24, 2024Updated last year
• f0ng / JavaFileDict

  View on GitHub
  Java应用的一些配置文件字典，来源于公开的字典与平时收集
  ☆320Feb 1, 2024Updated 2 years ago
• ShelShifu / FuzzingJSPath

  View on GitHub
  递归寻找JS泄露的路径。Recursively search for the paths of JS Files.For pentest
  ☆11Sep 30, 2024Updated last year
• burpheart / cybertagger

  View on GitHub
  高性能WEB指纹识别打标工具
  ☆32Feb 4, 2023Updated 3 years ago
• Ggasdfg321 / SmallProxyPool

  View on GitHub
  一个免费高质量的小代理池，解决一些站点有WAF的情况下，进行目录扫描或者字典爆破
  ☆274Feb 21, 2023Updated 3 years ago
• atsud0 / frp-modify

  View on GitHub
  frp0.38.1 支持域前置、远程加载配置文件、配置文件自删除、流量特征修改
  ☆133Apr 26, 2022Updated 3 years ago
• bit4woo / burp-api-drops

  View on GitHub
  burp插件开发指南
  ☆619Aug 8, 2021Updated 4 years ago
• mengmugai / deviceDetection

  View on GitHub
  安卓设备检测
  ☆19Jul 12, 2023Updated 2 years ago
• Ernket / shepherd

  View on GitHub
  将fofa quake zoomeye hunter等空间测绘聚合的小工具
  ☆23Aug 13, 2023Updated 2 years ago
• test502git / Hosts_scanV2

  View on GitHub
  这是一个用于IP和域名碰撞匹配访问的小工具优化版，能减少碰撞中出来的误报，旨意用来匹配出渗透过程中需要绑定hosts才能访问的弱主机或内部系统。
  ☆48Nov 18, 2021Updated 4 years ago