858 Open source projects that are alternatives of or similar to SecExample

A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.

SpringBoot 相关漏洞学习资料，利用方法和技巧合集，黑盒安全评估 check list

🚀 零代码、热更新、全自动 ORM 库，后端接口和文档零代码，前端(客户端) 定制返回 JSON 的数据和结构。 🚀 A JSON Transmission Protocol and an ORM Library for automatically providing APIs and Docs.

CVE-2020-36179~82 Jackson-databind SSRF&RCE

Bus 是一个基础框架、服务套件，它基于Java8编写，参考、借鉴了大量已有框架、组件的设计，可以作为后端服务的开发基础中间件。代码简洁，架构清晰，非常适合学习使用。

Solutions and write-ups from security-based competitions also known as Capture The Flag competition

XSS Cheatsheet - A collection of XSS attack vectors https://xss.devwerks.net/

美观、漂亮，我抽离出来的，拿来即用的简单后台管理系统！

Java web common vulnerabilities and security code which is base on springboot and spring security

Getting started with java code auditing 代码审计入门的小项目

An exquisite dns&http log server for verify SSRF/XXE/RFI/RCE vulnerability

XRCross is a Reconstruction, Scanner, and a tool for penetration / BugBounty testing. This tool was built to test (XSS|SSRF|CORS|SSTI|IDOR|RCE|LFI|SQLI) vulnerabilities

一个针对防御 log4j2 CVE-2021-44228 漏洞的 RASP 工具。 A Runtime Application Self-Protection module specifically designed for log4j2 RCE (CVE-2021-44228) defense.

项目是根据LandGrey/SpringBootVulExploit清单编写，目的hvv期间快速利用漏洞、降低漏洞利用门槛。

spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧

SQL Injection Payload List

渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms

ProxyLogon Full Exploit Chain PoC (CVE-2021–26855, CVE-2021–26857, CVE-2021–26858, CVE-2021–27065)

A java web project based on Spring Boot using MySQL, Spring MVC, Hibernate, Spring Data JPA, Query DSL, Lombok, Logback, etc.

Source code for Hacker101.com - a free online web and mobile security class.

一款完善的安全评估工具，支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档

Hacking tools

Top disclosed reports from HackerOne

DoS PoC's for SAP products

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

A boilerplate for koa2 RESTful API development

👨‍🏫 Mike's Web Security Course

🏴‍☠️ Pwn misconfigured sites running ShareX custom image uploader API through chained exploit

A vulnerability fuzzing tool written in bash, it contains the most commonly used tools to perform vulnerability scan

make http(s) request to prevent SSRF

Common Web Managers Fuzz Wordlists

JAW: A Graph-based Security Analysis Framework for JavaScript and Client-side CSRF

No description or website provided.

My exploitDB.

基于Redis的分布式限流组件，注解支持

java学习demo

Advanced Web Browser Fingerprinting

ecshop rce getshell

BugBounty Tool

A demonstration of stateless JWT authentication with Spring Security, Spring Boot and Vue js

Designed to scan and exploit vulnerabilities within Tor hidden services. TORhunter allows most tools to work as normal while resolving .onion

基于springboot+springcloud的高并发和商品秒杀项目，通过redis，rabbitmq等技术实现秒杀的高并发。

The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters

SpringBoot集成学习项目 SpringBoot Integration

分布式调度系统，基于zookeeper ,netty,调度内核参考Spring schedule 执行表达式和Spring schedule一样，没有使用Quartz，客户端完全基于注解配置，使用同 Spring schedule一致，最少配置，使用简单

springmvc 、springboot、springcloud 动态配置系统。http 轮询方式 更新 动态配置

基于javaFX的简单字幕处理桌面程序，集成在线翻译及语音转换

No description or website provided.

对springSecurity进行二次开发，提供OAuth2授权(支持跨域名，多应用授权)、JWT、SSO、文件上传、权限系统无障碍接入、接口防刷、XSS、CSRF、SQL注入、三方登录(绑定，解绑)、加密通信等一系列安全场景的解决方案

Proof of concept of CVE-2022-21907 Double Free in http.sys driver, triggering a kernel crash on IIS servers

旅馆管理系统

基于Springboot + Mybatis框架实现的一个简易的商场购物系统后端。该有的基础功能它都有！

Deliberately vulnerable scripts for Web Security training

Active4j-boot是基于SpingBoot2.0轻量级的java快速开发框架。以Spring Framework为核心容器，Spring MVC为模型视图控制器，Mybatis Plus为数据访问层， Apache Shiro为权限授权层, Redis为分布式缓存，Quartz为分布式集群调度,layui作为前端框架并进行前后端分离的开源框架

阿里云 SMS 短信 Java SDK 封装

支持Springboot，基于注解的可使用变量、可以自定义函数的通用操作日志组件

在线考试系统 colleges online examination system base on spring-boot and MyBatis

Spring Boot Starter for Apache Spark

Python SDK to access the vulnerability database

Job Plus项目是基于SpringBoot+Vue的轻量级定时任务管理系统