Giters

NothingCw / Hello-Java-Sec

☕️ Java Security,安全编码和代码审计

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

☕️ Hello Java Sec Stage

Java漏洞平台,结合漏洞代码和安全编码,帮助研发同学理解和减少漏洞

  • 默认账号:admin/admin

Vulnerability

  • SQLi
  • XSS
  • RCE
  • Deserialize
  • SSTI
  • SpEL
  • SSRF
  • Directory Traversal
  • Redirect
  • CSRF
  • File Upload
  • XXE
  • Actuator
  • Fastjson

Run

IDEA

配置数据库连接,数据库文件db.sql

spring.datasource.url=jdbc:mysql://127.0.0.1:3306/test
spring.datasource.username=root
spring.datasource.password=1234567

Jar

git clone https://github.com/j3ers3/Hello-Java-Sec
cd Hello-Java-Sec
mvn clean package -DskipTests
java -jar target/hello-1.0.0-SNAPSHOT.jar

环境

  • Java 1.8
  • SpringBoot 4.0
  • Bootstrap 4.6.0
  • Codemirror 5.62.0
  • Fastjson 1.2.24

About

☕️ Java Security,安全编码和代码审计

Languages

Language:Java 85.4%Language:HTML 9.1%Language:CSS 5.5%Language:Dockerfile 0.0%