Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Arissploit Framework is a simple framework designed to master penetration testing tools. Arissploit Framework offers simple structure, basic CLI, and useful features for learning and developing penetration testing tools.

Stars: ✭ 114 (-28.75%)

Mutual labels: vulnerability

Vulscan

Advanced vulnerability scanning with Nmap NSE

Stars: ✭ 2,305 (+1340.63%)

Mutual labels: vulnerability

Linuxflaw

This repo records all the vulnerabilities of linux software I have reproduced in my local workspace

Stars: ✭ 140 (-12.5%)

Mutual labels: vulnerability

Hacker101

Source code for Hacker101.com - a free online web and mobile security class.

Stars: ✭ 12,246 (+7553.75%)

Mutual labels: vulnerability

Springbootvulexploit

SpringBoot 相关漏洞学习资料，利用方法和技巧合集，黑盒安全评估 check list

Stars: ✭ 3,196 (+1897.5%)

Mutual labels: vulnerability

Wordpress Scanner

Wordpress Vulnerability Scanner

Stars: ✭ 137 (-14.37%)

Mutual labels: vulnerability

Phpvuln

Audit tool to find common vulnerabilities in PHP source code

Stars: ✭ 146 (-8.75%)

Mutual labels: vulnerability

Fortiscan

A high performance FortiGate SSL-VPN vulnerability scanning and exploitation tool.

Stars: ✭ 120 (-25%)

Mutual labels: vulnerability

Zeebsploit

web scanner - exploitation - information gathering

Stars: ✭ 159 (-0.62%)

Mutual labels: vulnerability

Xvwa

XVWA is intentionally designed with many security flaws and enough technical ground to upskill application security knowledge. This whole idea is to evangelize web application security issues. Do let us know your suggestions for improvement or any more vulnerability you would like to see in XVWA future releases.

Stars: ✭ 1,540 (+862.5%)

Mutual labels: vulnerability

Exploit Framework

🔥 An Exploit framework for Web Vulnerabilities written in Python

Stars: ✭ 144 (-10%)

Mutual labels: vulnerability

Js Vuln Db

A collection of JavaScript engine CVEs with PoCs

Stars: ✭ 2,087 (+1204.38%)

Mutual labels: vulnerability

Vulnix

Vulnerability (CVE) scanner for Nix/NixOS.

Stars: ✭ 161 (+0.63%)

Mutual labels: vulnerability

Magevulndb

List of Magento extensions with known security issues.

Stars: ✭ 152 (-5%)

Mutual labels: vulnerability

View All Similar Projects ➔

JavaLearnVulnerability

Java漏洞学习代码及笔记

项目TODO

[x] 漏洞代码完善中
[x] 漏洞使用和分析笔记准备中
- [x] 目前文章分析地址在每一个包下package-info.java
[x] Java反序列化
[x] Java反射
[x] Java类加载
[ ] shiro漏洞分析
[ ] weblogic漏洞分析
[x] fastjson漏洞分析
[ ] jackson漏洞分析
[ ] rmi、ldap
[ ] spring漏洞分析

目前所有文章分析都在博客 https://samny.blog.csdn.net/ 后期会转到项目下，所有的分析文章写完之后统一转入。

请先star 后面发布新版本，暂时还存在一些问题

项目优势：

1. 每一个漏洞环境都支持单独运行，方便分析
2. 漏洞都有分析文章，完全可以参考文章分析进行
3. 即使小白也能看懂
4. 每一个部分从基础的知识学习，再到漏洞实战分析，漏洞实战分析主要以最近几年的历史漏洞。
5. 由浅入深，由易到难。

时间线

* 2020/06/09 发布第一个公测版本，并同时决定停止维护一段时间。

* 2020/06/21 重新开始维护，更新。
* 2020/07/29 断更一段时间，hw期间懂？
* 2020/09/08 内容已经更新好了，等hw结束更新。

使用说明

下载完整的项目下载地址，推荐使用IDEA工具打开项目。

项目说明

项目	说明
javatest	依赖文件都在lib目录下，idea开箱即用
vuldemo	maven项目依赖需要下载，idea下载编译即可
weblogic	maven项目，部分依赖需要下载，idea下载编译即可

目录说明

项目	目录	说明
javatest	reflect	Java反射知识学习代码
javatest	serializable	序列化和反序列化基础知识学习，及反序列化漏洞简单demo
javatest	cc3bug	commons-collections-3.2.1的反序列化漏洞
javatest	util	ldap和rmi服务端工具
javatest	fastjson	fastjson反序列化漏洞demo
javatest	jackson	FasterXML/jackson-databind漏洞demo
javatest	lib	项目依赖
Javatest	echodisplay	Java反序列化回显
Javatest	classload	Java类加载机制
vuldemo	ccbug	commons-collections-3和4的反序列化漏洞
vuldemo	util	工具包

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].

Stars: ✭ 160

Visit Git Page 🔗Visit User Page 🔗Visit Issues Page (0) 🔗