934 Open source projects that are alternatives of or similar to Javadeserh2hc

iblessing is an iOS security exploiting toolkit, it mainly includes application information collection, static analysis and dynamic analysis. It can be used for reverse engineering, binary analysis and vulnerability mining.

Arquillian WebSphere Containers

a plenty of poc based on python

XSS Cheatsheet - A collection of XSS attack vectors https://xss.devwerks.net/

JVM written in Rust

Search for Unix binaries that can be exploited to bypass system security restrictions.

Complex custom class converters for attrs.

An excerpt of an ALM environment built on top of Vagrant, Libvirt and Ansible

🗝️ Dotenv is a module that loads environment variables from a .env file

日常工作中使用的技术沉淀+学习记录

POC-T强化版本 POC-S , 用于红蓝对抗中快速验证Web应用漏洞， 对功能进行强化以及脚本进行分类添加，自带dnslog等, 平台补充来自vulhub靶机及其他开源项目的高可用POC

JRuby is an implementation of the Ruby language using the JVM.

Android Kernel Exploitation

PoC for triggering buffer overflow via CVE-2020-0796

Java 工程师必备的技术知识点，全力打造Java 程序员的技能体系知识库；主要体现在 Java 基础、算法、网络、后端框架、数据库、操作系统等方面知识整理。对于Java 初学者升中高级、以及Java后端开发人员的的面试者都有非常显著的帮助。个人博客：www.husycode.cn

Xbox One Symbolic Link Exploit: Access restricted/encrypted volumes using the Xbox File Explorer.

A very vulnerable web site written in NodeJS with the purpose of have a project with identified vulnerabilities to test the quality of security analyzers tools tools

🦄🔒 Awesome list of secrets in environment variables 🖥️

A sane API for IDA Pro's decompiler. Useful for malware RE and vulnerability research

Real world and CTFs exploiting web/binary POCs.

Faraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.

developer.lightbend.com/start/?group=lagom

The Gosu programming language

Log4j Vulnerability Scanner for Windows

渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms

This is a minified exploit for mikrotik routers. It does not require any aditional modules to run.

Arquillian provides a component model for integration tests, which includes dependency injection and container life cycle management. Instead of managing a runtime in your test, Arquillian brings your test to the runtime.

SQL Injection Payload List

Maxine VM: A meta-circular research VM

Kotlin School with Kotlin Programming Tutorial

CVE-2020-0796 Remote Code Execution POC

Lambda-string (LS) is a helping java agent that inject configurable toString method into lambdas with some useful meta-information.

Jenkins RCE Proof-of-Concept: SECURITY-1266 / CVE-2019-1003000 (Script Security), CVE-2019-1003001 (Pipeline: Groovy), CVE-2019-1003002 (Pipeline: Declarative)

This is the demo code for a talk on improving cold startup times for JVM-based lambdas using GraalVM and Custom AWS Lambda Runtimes.

Vulners Python API wrapper

An example Play application showing encrypted session management

Commodity Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE, Javascript, XSLT

Yet Another PHP Shell - The most complete PHP reverse shell

Example Play Database Application using Anorm

[DEPRECATED]: Prefer Room by Google, or SQLDelight by Square.

A JVM implementation in Zig!

MapNeat is a JVM library written in Kotlin that provides an easy to use DSL (Domain Specific Language) for transforming JSON to JSON, XML to JSON, POJO to JSON in a declarative way.

Java知识总结:MySQL实战45讲,多线程和JVM知识总结，，SpringBoot，SpringCloud，Storm系列，微信小程序开发，ELK,《JAVA核心技术36讲笔记》，《深入理解JVM虚拟机笔记》,《高性能MySQL笔记》，《数据结构与算法》等等

Bistoury是去哪儿网的java应用生产问题诊断工具，提供了一站式的问题诊断方案

A sort of simple shell which support multiple protocols.

An advanced reverse shell written in Python3.

Tentacle is a POC vulnerability verification and exploit framework. It supports free extension of exploits and uses POC scripts. It supports calls to zoomeye, fofa, shodan and other APIs to perform bulk vulnerability verification for multiple targets.

Custom lab for tripleo - deployed on a physical node with libvirt

🌏 A zero-dependency networking solution for building modern and secure iOS, watchOS, macOS and tvOS applications.

IoT 固件漏洞复现环境

A curated list of awesome infosec courses and training resources.

An extremely simple, fast, efficient, cross-platform serialization format

(deprecated) Android application vulnerability analysis and Android pentest tool

A library designed to generate cryptographically strong random numbers.

Run JVM-based code in Go efficiently

Monorepo starter project for Kotlin, Python, TypeScript x React

Detects Windows and Linux systems with enabled Trusted Platform Modules (TPM) vulnerable to CVE-2017-15361. #nsacyber

The Aquarium Lab Operating System

Joint Advanced Defect assEsment for android applications