Ghidra is a software reverse engineering (SRE) framework

Google core libraries for Java

GraalVM compiles applications into native executables that start instantly, scale fast, and use fewer compute resources 🚀

A Java 8+ Jar & Android APK Reverse Engineering Suite (Decompiler, Editor, Debugger & More)

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

MCP Server for Ghidra

The modern Java bytecode editor

Java 1-25 Parser and Abstract Syntax Tree for Java with advanced analysis functionalities.

Allows you to emulate an Android native library, and an experimental iOS emulation

Soot - A Java optimization framework

Quickly find differences and similarities in disassembled code

iOS and macOS Decompiler

Java安全相关的漏洞和技术demo，原生Java、Fastjson、Jackson、Hessian2、XML反序列化漏洞利用和Spring、Dubbo、Shiro、CAS、Tomcat、RMI、Nexus等框架\中间件\功能的exploits以及Java Security Manager绕过、Dubbo-Hessian2安全加固等等实践代码。

Java web common vulnerabilities and security code which is base on springboot and spring security

This is the public repository for the CFR Java decompiler

shiro反序列化漏洞综合利用,包含（回显执行命令/注入内存马）修复原版中NoCC的问题 https://github.com/j1anFen/shiro_attack

a rep for documenting my study, may be from 0 to 0.1

MDUT - Multiple Database Utilization Tools

一款支持自定义的 Java 内存马生成工具｜A customizable Java in-memory webshell generation tool.

溯光 (TrackRay) 3 beta⚡渗透测试框架（资产扫描|指纹识别|暴力破解|网页爬虫|端口扫描|漏洞扫描|代码审计|AWVS|NMAP|Metasploit|SQLMap）

Jar Analyzer - 一个 JAR 包 GUI 分析工具，方法调用关系搜索，方法调用链 DFS 算法分析，模拟 JVM 的污点分析验证 DFS 结果，字符串搜索，Java Web 组件入口分析，CFG 程序分析，JVM 栈帧分析，自定义表达式搜索，紧跟 AI 技术发展，支持 MCP 调用，支持 n8n 工作流

Burp suite 分块传输辅助插件

项目是根据LandGrey/SpringBootVulExploit清单编写，目的hvv期间快速利用漏洞、降低漏洞利用门槛。

Burp extension to evade TLS fingerprinting. Bypass WAF, spoof any browser.

An easy-to-learn/use static analysis framework for Java

☕️ Java Security，安全编码和代码审计

HeapDump敏感信息提取工具

A CAT called tabby ( Code Analysis Tool )