84 Repositories
Java security Libraries
Tasks Planner : A minimalist collaborative app for scheduling and managing your tasks with the team and getting notifications through discord.
Tasks Planner ✨ Overview Tasks planner is a minimalist collaborative app for planning and managing your tasks with the team and get notifications thro
Budget Proof Key for Code Exchange (PKCE) implementation using Java Spring-boot
Low Budget Proof Key for Code Exchange (PKCE) Implementation using Java Spring-boot Just for fun, low budget implementation of PKCE Auth Flow using a
Operating Systems - Concepts of computer operating systems including concurrency, memory management, file systems, multitasking, performance analysis, and security. Offered spring only.
Nachos for Java README Welcome to Nachos for Java. We believe that working in Java rather than C++ will greatly simplify the development process by p
Zitadel.ch Example Project with Spring Boot and Spring Security
Zitadel Example Project with Spring Boot and Spring Security This example contains two Spring Boot Apps (app and api) which use the Zitadel IdP as Ope
Local Bytecode Scanner for the Log4JShell Vulnerability (CVE-2021-44228)
🔍 Log4JShell Bytecode Detector Log4jShell Bytecode Detector is an open source tool that helps identify if a jar file is affected by the critical CVE-
A password strength test app with strength, estimated crack times, warnings and suggestions to help make better passwords.
Is Your Password Secure? A password strength test app which displays strength, estimated crack time and provides warnings and suggestions to help make
BinAbsInspector: Vulnerability Scanner for Binaries
What is BinAbsInspector? BinAbsInspector (Binary Abstract Inspector) is a static analyzer for automated reverse engineering and scanning vulnerabiliti
A platform that links service providers with clients using Angular & Springboot
Bricoly : Engineer Your Life The Way It Should Be... 📘 Description This project's aims to connect people who are able to grant services with clients
100+ Spring Boot Articles, Tutorials, Video tutorials, Projects, Guides, Source code examples etc
YouTube Channel - Spring Boot Tutorial Subscribe for future video and updates Spring Boot Tutorial on YouTube Newly published spring boot tutorials (2
Aula sobre segurança no kafka usando SSL
Kafka4Devs - Segurança no Kafka com SSL Você sabe o que acontece por debaixo dos panos de uma aplicação segura? Sabe como empresas grandes que utiliza
DCL-350: Implementing MicroService Architecture using Spring Cloud
DCL-350: Implementing MicroService Architecture using Spring Cloud
Pandora - allowing to control different agents (Windows & Linux machine) from server(s) and master
Pandora Pandora is now an open-source project allowing to control different agents (Windows & Linux machine) from server(s) and master. Features Auto-
Spring-security, swagger, db auth , RestAPI
Rest API Features Spring-security Swagger-UI DB based Authentication Role Based Access Spring AOP Steps To Use go to /login screen go to swagger-ui.ht
Java Secure Cookie Library
Java library for security cookies, client-side pieces of data protected from reading and modifications by client with strong cryptography
Spring Boot JWT Authentication example with Spring Security & Spring Data JPA
Spring Boot JWT Authentication example with Spring Security & Spring Data JPA
e-Learning restful application with Spring boot
eLearning project backend This project was done as part of our Enterprise Application (EA) course project in Maharishi International University A Micr
OAUTHScan is a Burp Suite Extension written in Java with the aim to provide some automatic security checks
OAUTHScan is a Burp Suite Extension written in Java with the aim to provide some automatic security checks, which could be useful during penetration testing on applications implementing OAUTHv2 and OpenID standards.
LOG4J Java exploit - WAF and patches bypass tricks
🤝 Show your support - give a ⭐️ if you liked the content | SHARE on Twitter | Follow me on 🐱💻 ✂️ 🤬 LOG4J Java exploit - WAF and patches bypass tr
IntelliJ平台的OpenSCA Xcheck插件,让代码更安全
OpenSCA Xcheck IntelliJ平台的OpenSCA Xcheck插件,让代码更安全 项目介绍 Xcheck是基于IntelliJ平台的OpenSCA插件。Xcheck能对当前项目进行代码质量评估,并在可视化界面中展示评估结果。评估结果包括漏洞和有漏洞的组件的统计数、具体组件信息和相关
Java自动代码审计工具,尤其针对Spring框架,核心原理是模拟JVM栈帧进行分析,无需提供源码,通过一个JAR包即可
Java自动代码审计工具,尤其针对Spring框架,核心原理是模拟JVM栈帧进行分析,无需提供源码,通过一个JAR包即可
Removal of JndiLookup in now obsolete Minecraft versions, or versions that still have log4j 2.10 and is unable to use
NukeJndiLookupFromLog4j Removal of JndiLookup in now obsolete Minecraft versions, or versions that still have log4j 2.10 and is unable to use -Dlog4
Spring Boot Security Login example with JWT and H2 example
Spring Boot Security Login example with JWT and H2 example Appropriate Flow for User Login and Registration with JWT and HttpOnly Cookie Spring Boot R
Spring Boot Login and Registration example with MySQL, JWT, Rest Api - Spring Boot Spring Security Login example
Spring Boot Login example with Spring Security, MySQL and JWT Appropriate Flow for User Login and Registration with JWT Spring Boot Rest Api Architect
A Java agent that disables platform features you don't use, before an attacker uses them against you.
aegis4j Avoid the NEXT Log4Shell vulnerability! The Java platform has accrued a number of features over the years. Some of these features are no longe
CVE-2021-44228 (Log4Shell) Proof of Concept
CVE-2021-44228 (Log4Shell) Proof of Concept Apache Log4j2 =2.14.1 JNDI features used in configuration, log messages, and parameters do not protect ag
Authentication and authorization for application, api and user
多树AUTH / MT-AUTH 用户,应用,API管理中心 MT-AUTH是一款基于Spring Boot, OAuth2与事件驱动的角色的权限管理(RBAC)系统,通过集成Spring Cloud Gateway实现了API鉴权,缓存,跨域,CSRF防护,特殊字符过滤等常用功能 项目特点 基于事
A small and easy-to-use one-time password generator library for Java according to RFC 4226 (HOTP) and RFC 6238 (TOTP).
OTP-Java A small and easy-to-use one-time password generator for Java according to RFC 4226 (HOTP) and RFC 6238 (TOTP). Table of Contents Features Ins
A blogging system written in Java,
Nasher =========================== Nasher is a light Java blogging system Admin panel + Home pages Demo = http://jnasher.ir Admin Demo username/passw
Spring-react-security - 🌶 Spring Security & React 🌶
Spring-react-security - 🌶 Spring Security & React 🌶
JObfuscator is a source code obfuscator for the Java language
JObfuscator is a source code obfuscator for the Java language. Protect Java source code & algorithms from hacking, cracking, reverse engineering, decompilation & technology theft.
APIKit:Discovery, Scan and Audit APIs Toolkit All In One.
APIKit:Discovery, Scan and Audit APIs Toolkit All In One.
8INF138-TP3-SECURITY-DOCKER - Le docker du tp3 du cours 8INF138 de l'UQAC
📚 TP3 - 8INF138 Ceci est le TP3 du module 8INF138 de l'Universite du Quebec a Chicoutimi Le rapport ce situe dans le depot Le travail visuel n'a pas
Spring Boot Simple Login & Registration + MyBatis + MySQL
springboot-mybatis-security-login-register A simple security login & registration module using Spring Boot, Spring Security, MyBatis Framework and MyS
Spring Boot microservices app with Spring Cloud, Robust and resilient backend managing e-Commerce app
e-Commerce-boot μServices Important Note: This project's new milestone is to move The whole system to work on Kubernetes, so stay tuned. Introduction
Spring Boot & MongoDB Login and Registration example with JWT, Spring Security, Spring Data MongoDB
Spring Boot Login and Registration example with MongoDB Build a Spring Boot Auth with HttpOnly Cookie, JWT, Spring Security and Spring Data MongoDB. Y
Spring 5 Reactive playground
Spring Reactive Sample This is a sandbox project for demonstrating Reactive Streams support in Spring framework and Spring ecosystem. I've also mainta
Nrich is a Java library developed at CROZ whose purpose is to make development of applications on JVM a little easier.
nrich Nrich is a Java library developed at CROZ whose purpose is to make development of applications on JVM a little easier. It contains modules that
Rate limiting private REST APIs using Java Spring-boot, spring-security and bucket4j
Rate limiting REST APIs using Spring-security filter and Bucket4J Deployed Application (Swagger-ui on heroku) Inspired from: Baeldung Article Applicat
Nzyme is a free and open next-generation WiFi defense system.
Nzyme is a free and open next-generation WiFi defense system.
A library for bypassing all of Java's security mechanisms, visibility checks, and encapsulation measures via the JNI API
Narcissus: thwart strong encapsulation in JDK 16+ Narcissus is a JNI native code library that provides a small subset of the Java reflection API, whil
A handy plugin for copying requests/responses directly from Burp, some extra magic included.
RIO BurpSuite plugin Request Input Output BurpSuite plugin A.K.A RIO - A handy plugin for copying requests/responses directly from Burp, some extra ma
Java版 认证、鉴权、管理、任务调度通用功能组件
项目概述 LogiCommon 公共模块,包括Logi-security、Logi-job 。LogiCommon 会尽量保持与具体业务的解耦,以简单易用,轻量高效,尽可能减少用户感知的方式做到多平台适配,同时提供可扩展的接口,让用户自由的扩展 LogiCommon 的功能,以满足具体的业务。 Lo
A Spring Security based Authentication microservice with MySQL
Spring Security Microservice using JWT and MySQL Background This is an open source, production-ready application that provides role-based user authent
Test-Driven Security
Test-Driven Security Run tests ./gradlew test References Spring Security test support https://docs.spring.io/spring-security/site/docs/current/referen
☕️ Java Security,安全编码和代码审计
☕️ Hello Java Sec Java漏洞平台,结合漏洞代码和安全编码,帮助研发同学理解和减少漏洞 默认账号:admin/admin Vulnerability SQLi XSS RCE Deserialize SSTI SpEL SSRF Directory Traversal Redire
Spring Security 5.5 From Taxi To Takeoff
Spring Security 5.5 From Taxi to Takeoff This repository is for the SpringOne 2021 presentation titled "Spring Security 5.5 From Taxi to Takeoff". It
Spring Security自定校验逻辑,支持图片验证码、短信验证码登录。支持JSON、表单登录。
Spring Security 实现短信验证码和图片验证码登录。 参考文章: 添加图片验证码 短信验证码校验逻辑 Spring Security中UsernameNotFoundException的解决方案 Spring Security实现自动登录 Spring Security 过滤器链 1.
FIDO2(WebAuthn) server officially certified by FIDO Alliance and Relying Party examples.
Overview FIDO (Fast IDentity Online) is an open standard for online authentication. It is designed to solve the password problems stemming from a lot
Projeto Base - Spring Security - Blog Pessoal
Implementando a Camada de Segurança com o Spring Security no Blog Pessoal Nesta atividade iremos implementar a camada de segurança da aplicação com o
Supercharge your alerts.
Introduction ‘Why does the world need another shoe?’ — sometimes innovation can be about taking things away. It can be whispering when everyone else i
完整教学!从0到1开发,手把手教你学会开发一个spring security + jwt + vue的前后端分离项目! 线上演示:https://markerhub.com/vueadmin/
VueAdmin - 基于SpringBoot+Jwt+Vue的前后端分离后台管理系统 完整教学!从0到1开发,手把手教你学会开发一个spring security + jwt + vue的前后端分离项目! 线上体验:https://www.markerhub.com/vueadmin/ 说明: 首
Engin Demiroğ Yazılım Geliştirici Yetiştirme Kampı (JAVA + REACT) Rehberi
1. Java Temelleri - 1 DERS Değişkenler Referans Tipleri Şart Blokları Döngüler Diziler 2. Java Temelleri - 2 DERS Main Product Product Manager Categor
a blockchain network simulator aimed at researching consensus algorithms for performance and security
Just Another Blockchain Simulator JABS - Just Another Blockchain Simulator. JABS is a blockchain network simulator aimed at researching consensus algo
Burp plugin for the 1Password session protocol for use by security researchers. https://bugcrowd.com/agilebits
1Password session analyzer plugin for Burp Suite This repository contains a Burp plugin that adds a special message editor view to Burp to analyze and
【多模块微服务脚手架平台——Ancba】前后端分离架构SpringBoot 2.x、SpringCloud、SpringAdmin、Spring Security、Mybatis-plus、(Shiro)、JWT、Feign、Nacos、Knif4j等。
Ancba 打造Blog.Core项目的SpringBoot微服务版,但是更强大 👏 Ancba (Another New CLI By Alacrity) 另一个全新的敏捷脚手架(单体/模块化/微服务都可支持)。 核心知识点与进度 📣 在 ..../resources/application-
Spring Boot Refresh Token using JWT example - Expire and Renew JWT Token
Spring Boot Refresh Token with JWT example Build JWT Refresh Token in the Java Spring Boot Application. You can know how to expire the JWT, then renew
Employee Management System using Spring Boot, Spring Security, Thymeleaf and MySQL database.
Employee Management System Employee Management System using Spring Boot, Spring Security, Thymeleaf and MySQL database. YouTube Video Series Employee
Sauron, the all seeing eye! It is a service to generate automated reports and track migrations, changes and dependency versions for backend services also report on known CVE and security issues.
SAURON - VERSION AND DEPLOYMENT TRACKER DESCRIPTION Sauron, the all seeing eye! It is a service to generate automated reports and track migrations, ch
“火线~洞态IAST”是一款专为甲方安全人员、代码审计工程师和0 Day漏洞挖掘人员量身打造的辅助工具,可用于集成devops环境进行漏洞检测、作为代码审计的辅助工具和自动化挖掘0 Day。
洞态IAST 原"灵芝IAST",后更名为"洞态IAST",产品改为SaaS版,agent端采集与污点相关的数据并发送至服务器端,服务器端接收数据并重构形成污点方法图,再根据深度优先算法搜索污点调用链 项目介绍 “火线~洞态IAST”是一款专为甲方安全人员、甲乙代码审计工程师和0 Day漏洞挖掘人员
基于 Spring Security OAuth 的统一账号管理平台
基于 Spring Security OAuth 的统一账号管理平台 前后端演示地址: https://tao.flizi.cn 支持密码模式演示 输入账号 123456, 密码: 123456, 以及验证码后点击登录 支持授权登录演示 输入手机号 123456, 密码: 123456, 以及验证码
基于SpringBoot,Spring Security,JWT,Vue & Element 的前后端分离权限管理系统
平台简介 芋道,一套全部开源的企业级的快速开发平台,毫无保留给个人及企业免费使用。 有任何问题,或者想要的功能,可以在 Issues 中提给艿艿。 前端采用 vue-element-admin。 后端采用 Spring Boot、MySQL、Redis。 权限认证使用 Spring Security
🦄 开源社区系统:基于 SpringBoot + MyBatis + MySQL + Redis + Kafka + Elasticsearch + Spring Security + ... 并提供详细的开发文档和配套教程。包含帖子、评论、私信、系统通知、点赞、关注、搜索、用户设置、数据统计等模块。
Echo — 开源社区系统 项目上线到服务器之后可能会出现各种各样的 BUG,比如 Elasticsearch 服务启动失败导致搜索模块不可用,但是在本地运行是完全没问题的,所以各位小伙伴可以放心下载部署。 📚 项目简介 Echo 是一套前后端不分离的开源社区系统,基于目前主流 Java Web
Java implementation of Condensation - a zero-trust distributed database that ensures data ownership and data security
Java implementation of Condensation About Condensation enables to build modern applications while ensuring data ownership and security. It's a one sto
参考 DDD/Clean Architecture 设计理念,整合 Spring Boot/Spring Security/Mybatis Plus/Vavr 的 Spring Realworld 应用案例
Demo · 更多项目 · 参考资料 ms-spring-ddd-examples Unified Domain-driven Layered Architecture for MicroService Apps,试图探索一套切实可行的应用架构规范,可以复制、可以理解、可以落地、可以控制复杂性的指导
一个小而美的低代码全栈开发平台,一键生成后端api接口+前端页面代码+在线接口文档,节省50%的前后端开发的工作量。基于springboot +mybatis+spring security+vue 技术栈
YOMA [toc] 一个小而美的低代码全栈开发平台,一键生成后端api接口+前端页面代码+在线接口文档,节省50%的前后端开发的工作量,平台代码100%开源。平台适用于企业信息化、政务、中小型互联网等项目 平台采用前后端分离架构,基于如下流行的开源框架,易上手+便于后期维护 后端:https://
Google Firing range Apache 2 Google Firing range Firing Range is a test bed for web application security scanners, providing synthetic, wide coverage for an array of vulnerabilities. It can be deployed as a Google App Engine application. License: Apache 2 , .
What is Firing Range? Firing Range is a test bed for web application security scanners, providing synthetic, wide coverage for an array of vulnerabili
Spring Boot 系列实战合集
本项目为 《Spring Boot实战合集》的系列文章,代码已开源,并持续保持更新。如果您觉得该项目对您有用,欢迎点击右上方的 Star按钮支持一波!! 个人博客:https://www.codesheep.cn GitHub:https://github.com/hansonwang99 另外所有
循序渐进,学习Spring Boot、Spring Boot & Shiro、Spring Batch、Spring Cloud、Spring Cloud Alibaba、Spring Security & Spring Security OAuth2,博客Spring系列源码:https://mrbird.cc
Spring 系列教程 该仓库为个人博客https://mrbird.cc中Spring系列源码,包含Spring Boot、Spring Boot & Shiro、Spring Cloud,Spring Boot & Spring Security & Spring Security OAuth2
mall项目是一套电商系统,包括前台商城系统及后台管理系统,基于SpringBoot+MyBatis实现,采用Docker容器化部署。 前台商城系统包含首页门户、商品推荐、商品搜索、商品展示、购物车、订单流程、会员中心、客户服务、帮助中心等模块。 后台管理系统包含商品管理、订单管理、会员管理、促销管理、运营管理、内容管理、统计报表、财务管理、权限管理、设置等模块。
mall 友情提示 快速体验项目:在线访问地址。 全套学习教程:《mall学习教程》。 微服务版本:基于Spring Cloud Hoxton & Alibaba的项目:mall-swarm。 专属学习路线:学习不走弯路,整理了套非常不错的《mall专属学习路线》。 项目交流:想要加群交流项目的朋友
springboot 框架与其它组件结合如 jpa、mybatis、websocket、security、shiro、cache等
致歉 由于自己懒以及身体对issuse 解决的不及时。请大家以后提issuse 的时候写清楚 模块名 比如“springboot-SpringSecurity4” 和问题,我会抽时间抓紧解决。 springboot-SpringSecurity0 包含两部分代码: 第一是 博客 springboot
基于SpringCloud2.1的微服务开发脚手架,整合了spring-security-oauth2、nacos、feign、sentinel、springcloud-gateway等。服务治理方面引入elasticsearch、skywalking、springboot-admin、zipkin等,让项目开发快速进入业务开发,而不需过多时间花费在架构搭建上。持续更新中
快速开始 先决条件 首先本机先要安装以下环境,建议先学习了解springboot和springcloud基础知识。 git java8 maven 开发环境搭建 linux和mac下可在项目根目录下执行 ./install.sh 快速搭建开发环境。如要了解具体的步骤,请看如下文档。 具体步骤如下:
OACC (Object ACcess Control) is an advanced Java Application Security Framework
OACC Java Application Security Framework What is OACC? OACC - pronounced [oak] - is a fully featured API to both enforce and manage your application's
PicketLink is a security framework for securing Java EE applications.
PicketLink http://picketlink.org Java EE Application Security Identity Management Federation Social REST Security Standard-based Security This reposit
Multi-platform transparent client-side encryption of your files in the cloud
Supporting Cryptomator Cryptomator is provided free of charge as an open-source project despite the high development effort and is therefore dependent
Spring Security
Spring Security Spring Security provides security services for the Spring IO Platform. Spring Security 5.0 requires Spring 5.0 as a minimum and also r
A Linux packet crafting tool.
Pig Pig (which can be understood as Packet intruder generator) is a Linux packet crafting tool. You can use Pig to test your IDS/IPS among other stuff
Tink is a multi-language, cross-platform, open source library that provides cryptographic APIs that are secure, easy to use correctly, and hard(er) to misuse.
Tink A multi-language, cross-platform library that provides cryptographic APIs that are secure, easy to use correctly, and hard(er) to misuse. Ubuntu
Easy to use cryptographic framework for data protection: secure messaging with forward secrecy and secure data storage. Has unified APIs across 14 platforms.
Themis provides strong, usable cryptography for busy people General purpose cryptographic library for storage and messaging for iOS (Swift, Obj-C), An
Security engine for Java (authentication, authorization, multi frameworks): OAuth, CAS, SAML, OpenID Connect, LDAP, JWT...
pac4j is an easy and powerful security engine for Java to authenticate users, get their profiles and manage authorizations in order to secure web appl
A small and easy-to-use one-time password generator library for Java according to RFC 4226 (HOTP) and RFC 6238 (TOTP).
OTP-Java A small and easy-to-use one-time password generator for Java according to RFC 4226 (HOTP) and RFC 6238 (TOTP). Table of Contents Features Ins
Free and open source log management
Graylog Welcome! Graylog is an open source log management platform. You can read more about the project on our website and check out the documentation
Zuul is a gateway service that provides dynamic routing, monitoring, resiliency, security, and more.
Zuul Zuul is an L7 application gateway that provides capabilities for dynamic routing, monitoring, resiliency, security, and more. Please view the wik
:coffee: SonarSource Static Analyzer for Java Code Quality and Security
Code Quality and Security for Java This SonarSource project is a code analyzer for Java projects. Information about the analysis of Java features is a