Ghidra is a software reverse engineering (SRE) framework

A distributed task scheduling framework.（分布式任务调度平台XXL-JOB）

A standalone Java Decompiler GUI

一个基于 Android 调试 API + 百度地图实现的虚拟定位工具，并且同时实现了一个可以自由移动的摇杆

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

MCP Server for Ghidra

OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.

My changes to LSPosed

SpotBugs is FindBugs' successor. A tool for static analysis to look for bugs in Java code.

Apache Nutch is an extensible and scalable web crawler

Useless LSPosed Framework Fork

Cknife

Jenkins plugin to run dynamic agents in a Kubernetes/Docker environment

Share Things Related to Java - Java安全漫谈笔记相关内容

Update for SPatch nightly

一款基于BurpSuite的被动式shiro检测插件

BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite). 支持多种加密算法或直接执行JS代码的用于爆破前端加密的BurpSuite插件

Dynamic java method hook framework on ART. Allowing you to change almost all java methods' behavior dynamically.

Parsing and re-packing Android boot.img/vbmeta.img/payload.bin, supporting Android 15

A helpful Java Deserialization exploit framework.

JAVA安全SDK及编码规范

Get info about your Device Integrity through the Play Intergrity API

Xperia device flashing

虚拟摄像头 virtual camera

GUI App for Injecting shared libraries on Android

Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects

OpenRASP 漏洞测试环境

blackbox