Starred repositories
8
results
for forked starred repositories
written in Java
Clear filter
JNDI-Exploitation-Kit(A modified version of the great JNDI-Injection-Exploit created by @welk1n. This tool can be used to start an HTTP Server, RMI Server and LDAP Server to exploit java web apps v…
一个利用ASM对字节码进行污点传播分析的静态代码审计应用(添加了大量代码注释,适合大家进行源码学习)。也加入了挖掘Fastjson反序列化gadget chains和SQLInject(JdbcTemplate、MyBatis、JPA、Hibernate、原生jdbc等)静态检测功能。并且加入了很多功能以方便进行漏洞自动化挖掘。
PortSwigger / oauth-scan
Forked from akabe1/OAUTHScanBurp Suite Extension useful to verify OAUTHv2 and OpenID security
wh1t3p1g / ysoserial
Forked from frohoff/ysoserialforked from frohoff/ysoserial and added my own payloads.
kingkaki / ysoserial
Forked from frohoff/ysoserialA proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
artsploit / rogue-jndi
Forked from veracode-research/rogue-jndiA malicious LDAP server for JNDI injection attacks
BishopFox / ysoserial-bf
Forked from frohoff/ysoserialA proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
vrechson / Richsploit
Forked from redtimmy/RichsploitExploitation toolkit for RichFaces