Awesome Open Source
Search
Programming Languages
Languages
All Categories
Categories
About
Search results for java vulnerabilities
java
x
vulnerabilities
x
62 search results found
Ysoserial
⭐
7,002
A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
Jndi Injection Exploit
⭐
2,161
JNDI注入测试工具(A tool which generates JNDI links can start several servers to exploit JNDI Injection vulnerability,like Jackson,Fastjson,etc)
Java Sec Code
⭐
2,149
Java web common vulnerabilities and security code which is base on springboot and spring security
Dependency Track
⭐
2,119
Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.
Springbootexploit
⭐
1,692
项目是根据LandGrey/SpringBootVulExploit清单编写,目的hvv期间快速利用
Jexboss
⭐
1,470
JexBoss: Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool
Horusec
⭐
1,000
Horusec is an open source tool that improves identification of vulnerabilities in your project with just one command.
Hack Tools
⭐
764
hack tools
Zip Slip Vulnerability
⭐
659
Zip Slip Vulnerability (Arbitrary file write through archive extraction)
Javacodeaudit
⭐
656
Getting started with java code auditing 代码审计入门的小项目
Knowledge
⭐
651
Free Knowledge Management System
Jackhammer
⭐
599
Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.
Esapi Java Legacy
⭐
578
ESAPI (The OWASP Enterprise Security API) is a free, open source, web application security control library that makes it easier for programmers to write lower-risk applications.
Dependency Check Sonar Plugin
⭐
532
Integrates Dependency-Check reports into SonarQube
Steady
⭐
514
Analyses your Java applications for open-source dependencies with known vulnerabilities, using both static analysis and testing to determine code context and usage for greater accuracy. https://eclipse.github.io/steady/
Javalearnvulnerability
⭐
491
Java漏洞学习笔记 Deserialization Vulnerability
Diva Android
⭐
485
DIVA Android - Damn Insecure and vulnerable App for Android
Mysql Fake Server
⭐
477
MySQL Fake Server (纯Java实现,支持GUI版和命令行版,提供Dockerfile,支持多种常见JDBC利用)
Rogue_mysql_server
⭐
470
A rouge mysql server supports reading files from most mysql libraries of multiple programming languages.
Jar Analyzer
⭐
467
Jar Analyzer - 一个JAR包分析工具,批量分析搜索,方法调用关系搜索,字符串搜索,Spring分析,CFG分析,JV Stack Frame分析,远程分析Tomcat,自定义SQL查询
Javadeserh2hc
⭐
411
Sample codes written for the Hackers to Hackers Conference magazine 2017 (H2HC).
Raptor
⭐
294
Web-based Source Code Vulnerability Scanner
Awesome Java Security
⭐
291
Awesome Java Security Resources 🕶☕🔐
Bodgeit
⭐
238
The BodgeIt Store is a vulnerable web application which is currently aimed at people who are new to pen testing.
Vulnerableapp
⭐
236
OWASP VulnerableApp Project: For Security Enthusiasts by Security Enthusiasts.
Easybuggy
⭐
203
Too buggy web application
Ghidra Scripts
⭐
201
A collection of my Ghidra scripts to facilitate reverse engineering and vulnerability research.
Awesome Log4shell
⭐
187
An Awesome List of Log4Shell resources to help you stay informed and secure! 🔒
Jfrog Idea Plugin
⭐
187
JFrog IntelliJ IDEA plugin
Java Unserialization Study
⭐
172
QAQ Just study unserialize vulnerabilities in Java :)
Fosslight
⭐
167
FOSSLight Hub : Integrated management web-service for Open Source Compliance Process
Micronaut Security
⭐
164
The official Micronaut security solution
Leaky Leaky
⭐
152
[PATCHED] Exploit that allows one to authenticate as any user in Minecraft
Wavsep
⭐
147
The Web Application Vulnerability Scanner Evaluation Project
Burp Molly Scanner
⭐
135
Turn your Burp suite into headless active web application vulnerability scanner
Owasp Orizon
⭐
127
Owasp Orizon is a source code static analyzer tool designed to spot security issues in Java applications.
Sap_recon
⭐
125
PoC for CVE-2020-6287, CVE-2020-6286 (SAP RECON vulnerability)
Dependency Check Plugin
⭐
124
Jenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).
Vulnerable Sso
⭐
112
vulnerable single sign on
Xray
⭐
108
X-Ray allows you to scan your Android device for security vulnerabilities that put your device at risk.
Spring Boot Upload File Lead To Rce Tricks
⭐
104
spring boot Fat Jar 应用文件上传漏洞到 RCE 的利用技巧
Angelaroot
⭐
95
An app which escalates root privilege on device and installs SuperSU through newly vulnerability "angela root" without unlocking bootloader
Android Sms Spoof
⭐
86
PoC app which takes advantage of Android's SmsReceiverService being exported to fake an incoming SMS with no permissions.
Vucsa
⭐
78
Vulnerable Client-Server Application (VuCSA) is made for learning how to perform penetration tests of non-http thick clients. It is written in Java (with JavaFX graphical user interface) and contains multiple challenges including SQL injection, RCE, XML vulnerabilities and more.
Superserial
⭐
75
SuperSerial - Burp Java Deserialization Vulnerability Identification
Secexample
⭐
73
JAVA 漏洞靶场 (Vulnerability Environment For Java)
Vyapi
⭐
71
VyAPI - A cloud based vulnerable hybrid Android App
Openunison
⭐
69
Unified Identity Management
Snyk Maven Plugin
⭐
68
Test and monitor your projects for vulnerabilities with Maven. This plugin is officially maintained by Snyk.
Scan Gradle Plugin
⭐
68
Gradle plugin that scans the dependencies of a Gradle project using Sonatype platforms: OSS Index and Nexus IQ Server.
Rescue
⭐
66
An automated tool for the detection of regexes' slow-matching vulnerabilities.
Cloudrasp Log4j2
⭐
62
一个针对防御 log4j2 CVE-2021-44228 漏洞的 RASP 工具。 A Runtime Application Self-Protection module specifically designed for log4j2 RCE (CVE-2021-44228) defense.
Vulnerability Of The Day
⭐
59
A pedagogically-curated collection of vulnerability demonstrations for undergraduate software engineering students.
Modjoda
⭐
55
Java Object Deserialization on Android
Bigger Than Bigger
⭐
55
Expolit Lists. 相关集合💥💥💥 ;) 用友NC反序列化/ CTF/ Java Deserialization/Shiro Vulns/ CNVD or CVE Vulns/ Log4j2/ Hikvision-decrypter...✨✨✨
Attack Surface Detector Burp
⭐
50
The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
Break Fast Serial
⭐
49
A proof of concept that demonstrates asynchronous scanning for Java deserialization bugs
Demonhunter_exploitkit
⭐
47
Source code to the Malicious Demon Hunter Exploit Kit
Dastproxy
⭐
47
Myvirtualdirectory
⭐
43
Open Source LDAP Virtual Directory
Data Prepper
⭐
40
This repository is archived. Please migrate to the active project: https://github.com/opensearch-project/data-prepper
Installerhijackingvulnerabilityscanner
⭐
40
Jruby Openssl
⭐
39
JRuby's OpenSSL gem
Superserial Active
⭐
39
SuperSerial-Active - Java Deserialization Vulnerability Active Identification Burp Extender
Attack Surface Detector Zap
⭐
35
The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
Terracotta Bank
⭐
34
An intentionally-vulnerable web application, ported from https://github.com/jzheaux/terracotta-bank-spring
Cve 2022 41852
⭐
33
CVE-2022-41852 Proof of Concept (unofficial)
Saferegex
⭐
30
A tool for testing regular expressions for ReDoS vulnerabilities.
Easybuggy4sb
⭐
28
EasyBuggy clone build on Spring Boot
Owasp Zap Jwt Addon
⭐
27
OWASP ZAP addon for finding vulnerabilities in JWT Implementations
Pixeldump_cve 2016 8462
⭐
26
Pixel bootlaoder exploit for reading flash storage
Safelog4j
⭐
26
Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning or upgrading
Javascr
⭐
26
Secure Coding Rules for Java
Burp Vulners Scanner
⭐
25
Burp scanner plugin based on Vulners.com vulnerability database
Bittraversal
⭐
24
Burpsuite Plugin to detect Directory Traversal vulnerabilities
Reveal
⭐
24
Allsafe
⭐
24
Intentionally vulnerable Android application.
Fortifybugtrackerutility
⭐
23
Automated submission of FoD and SSC vulnerabilities to external systems
Cve 2022 35405
⭐
23
ManageEngine PAM360, Password Manager Pro, and Access Manager Plus unauthenticated remote code execution vulnerability PoC-exploit
Jndi Injection Exploit
⭐
22
JNDI注入测试工具(A tool which generates JNDI links can start several servers to exploit JNDI Injection vulnerability,like Jackson,Fastjson,etc)
Cve 2020 17530
⭐
20
S2-061 CVE-2020-17530
Intellij Dependency Analytics
⭐
19
IntelliJ Dependency Analytics
Gke Auditor
⭐
19
Uvp
⭐
19
Unified Vulnerability Platform
Poc Cve 2018 1273
⭐
18
POC for CVE-2018-1273
Astam Correlator
⭐
16
Vulnerability consolidation and management tool, enhances scan results by merging different findings of the same weakness across multiple static/dynamic scans
Myhktools
⭐
16
https://51pwn.com,Awesome Penetration Testing,hacker tools collection, metasploit exploit, meterpreter....struts2、weblogic, 0day,poc,apt,backdoor,VulApps,vuln,pentest-script
Data7
⭐
15
A vulnerability patch gathering tool
Byelog4shell
⭐
14
Use Log4Shell vulnerability to vaccinate a victim server against Log4Shell
Yavdb
⭐
14
Yet Another Vulnerability Database
Confluence Hack
⭐
14
CVE-2023-22515
Android Ssl
⭐
14
Android SSL certificate validation vulnerability detection tools.
Authcheck
⭐
13
Analysis for access-control vulnerabilities in Java Spring Security applications.
Vinascanhub
⭐
12
Software scan Vulns Web Application
Mixewaybackend
⭐
12
Mixeway is security orchestrator for vulnerability scanners which enable easy plug in integration with CICD pipelines. MixewayBackend project contains source code of backend with all plugin integrations writer in Spring Boot.
Cheatsheetseries_cn
⭐
12
OWASP 安全实践备忘表; OWASP CheatSheetSeries 汉化
Vulnrep
⭐
11
vulnerability reporting tool powered by vulners.com and wpvulndb.com
Gradle Plugin
⭐
11
Snyk Gradle Plugin - Scanning and monitoring your dependencies for security vulnerabilities from Gradle
Stac
⭐
11
Public release items for the DARPA Space/Time Analysis for Cybersecurity (STAC) program
Wings Framework
⭐
11
This repository contains the core code of the Wings Framework. A Fast, Lightweight and Flexible Web Development micro framework in Java.
Related Searches
Java Spring (21,350)
Java Spring Boot (11,982)
Java Video Game (8,093)
Java Gradle (8,072)
Java Docker (6,382)
Java Database (6,015)
Java Mysql (5,954)
Java Sdk (5,864)
Javascript Java (5,468)
Java Rest (4,956)
1-62 of 62 search results
Privacy
|
About
|
Terms
|
Follow Us On Twitter
Copyright 2018-2024 Awesome Open Source. All rights reserved.