{"id":22954191,"url":"https://github.com/cn-panda/javacodeaudit","last_synced_at":"2025-10-10T05:39:39.001Z","repository":{"id":37382129,"uuid":"224329304","full_name":"cn-panda/JavaCodeAudit","owner":"cn-panda","description":"Getting started with java code auditing  代码审计入门的小项目","archived":false,"fork":false,"pushed_at":"2023-02-22T05:44:31.000Z","size":60841,"stargazers_count":918,"open_issues_count":15,"forks_count":118,"subscribers_count":18,"default_branch":"master","last_synced_at":"2025-05-24T04:06:44.698Z","etag":null,"topics":["code","fastjson","jackson","java","rce","sql","ssrf","vulnerability-analysis","weblogic","xss"],"latest_commit_sha":null,"homepage":"https://www.cnpanda.net","language":"JavaScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/cn-panda.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null}},"created_at":"2019-11-27T02:42:44.000Z","updated_at":"2025-05-16T09:17:22.000Z","dependencies_parsed_at":"2024-01-13T18:12:12.659Z","dependency_job_id":null,"html_url":"https://github.com/cn-panda/JavaCodeAudit","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/cn-panda/JavaCodeAudit","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cn-panda%2FJavaCodeAudit","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cn-panda%2FJavaCodeAudit/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cn-panda%2FJavaCodeAudit/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cn-panda%2FJavaCodeAudit/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/cn-panda","download_url":"https://codeload.github.com/cn-panda/JavaCodeAudit/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cn-panda%2FJavaCodeAudit/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":279002889,"owners_count":26083468,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","status":"online","status_checked_at":"2025-10-10T02:00:06.843Z","response_time":62,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["code","fastjson","jackson","java","rce","sql","ssrf","vulnerability-analysis","weblogic","xss"],"created_at":"2024-12-14T16:16:25.109Z","updated_at":"2025-10-10T05:39:38.965Z","avatar_url":"https://github.com/cn-panda.png","language":"JavaScript","funding_links":[],"categories":[],"sub_categories":[],"readme":"# About\nThe articles in this series are aimed at people who have a basic knowledge of Java's basic syntax. The contents of this series of articles mainly include:\n\n* Introduction to audit environment\n* SQL vulnerability principle and actual case introduction\n* XSS vulnerability principle and actual case introduction\n* SSRF vulnerability principle and actual case introduction\n* RCE vulnerability principle and actual case introduction\n* Includes vulnerability principles and actual case introductions\n* Serialization vulnerability principle and actual case introduction\n* S2 series classic vulnerability analysis\n* WebLogic series of classic vulnerability analysis\n* fastjson series classic vulnerability analysis\n* Jackson series classic vulnerability analysis, etc.\n\nThe content order may be slightly adjusted, but the overall content will not change. Finally, I hope that this series of articles can bring you a little gain.\n\nThis project contains the source code needed based on the above article\n\nHave fun\n\n\n# 关于\n本系列的文章面向人群主要是拥有 Java 基本语法基础的朋友，系列文章的内容主要包括：\n\n* 审计环境介绍\n* SQL 漏洞原理与实际案例介绍\n* XSS 漏洞原理与实际案例介绍\n* SSRF 漏洞原理与实际案例介绍\n* RCE 漏洞原理与实际案例介绍\n* 包含漏洞原理与实际案例介绍\n* 序列化漏洞原理与实际案例介绍\n* S2系列经典漏洞分析\n* WebLogic 系列经典漏洞分析\n* fastjson系列经典漏洞分析\n* jackson系列经典漏洞分析等\n\n可能内容顺序会略有调整，但是总体内容不会改变，最后希望这系列的文章能够给你带来一点收获。\n\n本项目包含了基于上述文章中需要的源码\n\n玩的开心\n\n\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcn-panda%2Fjavacodeaudit","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fcn-panda%2Fjavacodeaudit","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcn-panda%2Fjavacodeaudit/lists"}