├── README.md ├── asset ├── noteimage_1.png ├── noteimage_10.png ├── noteimage_2.png ├── noteimage_3.png ├── noteimage_4.png ├── noteimage_5.png ├── noteimage_6.png ├── noteimage_7.png ├── noteimage_8.png └── noteimage_9.png ├── pom.xml └── src ├── main └── java │ └── com │ └── aftersnows │ ├── Agent │ └── socketFilter.java │ ├── FindEvilAgent.java │ ├── JVM │ ├── Defense │ │ ├── DEF.java │ │ ├── DEFUtils.java │ │ ├── HTTPServiceDEF.java │ │ └── agentDEF.java │ ├── DumpClass │ │ └── DumpProcessMemory.java │ ├── HotSpot.java │ └── JVMTest.java │ ├── check │ └── CheckUtils.java │ ├── filter │ ├── TimerFilter.java │ ├── WebsocketsFilter.java │ ├── filtersFilter.java │ ├── listenersFilter.java │ ├── servletsFilter.java │ └── valuesFilter.java │ ├── transform │ ├── ClassDumpTransformer.java │ ├── KillFilter.java │ ├── KillListener.java │ ├── KillServlet.java │ ├── KillTimer.java │ ├── KillValue.java │ ├── KillWebsocket.java │ └── socketVim.java │ ├── utils │ ├── JarFileHelper.java │ ├── ModuleLoader.java │ ├── VirtualMachineClassLoader.java │ └── utils.java │ └── visitor │ ├── FilterKillVisitor.java │ ├── ListenerKillVisitor.java │ ├── ServletKillVisitor.java │ ├── TimerKillVisitor.java │ ├── ValueKillVisitor.java │ └── WebsocketKillVisitor.java └── test └── java ├── FindEvilAgent.java └── test.java /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/README.md -------------------------------------------------------------------------------- /asset/noteimage_1.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/asset/noteimage_1.png -------------------------------------------------------------------------------- /asset/noteimage_10.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/asset/noteimage_10.png -------------------------------------------------------------------------------- /asset/noteimage_2.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/asset/noteimage_2.png -------------------------------------------------------------------------------- /asset/noteimage_3.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/asset/noteimage_3.png -------------------------------------------------------------------------------- /asset/noteimage_4.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/asset/noteimage_4.png -------------------------------------------------------------------------------- /asset/noteimage_5.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/asset/noteimage_5.png -------------------------------------------------------------------------------- /asset/noteimage_6.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/asset/noteimage_6.png -------------------------------------------------------------------------------- /asset/noteimage_7.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/asset/noteimage_7.png -------------------------------------------------------------------------------- /asset/noteimage_8.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/asset/noteimage_8.png -------------------------------------------------------------------------------- /asset/noteimage_9.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/asset/noteimage_9.png -------------------------------------------------------------------------------- /pom.xml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/pom.xml -------------------------------------------------------------------------------- /src/main/java/com/aftersnows/Agent/socketFilter.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/src/main/java/com/aftersnows/Agent/socketFilter.java -------------------------------------------------------------------------------- /src/main/java/com/aftersnows/FindEvilAgent.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/src/main/java/com/aftersnows/FindEvilAgent.java -------------------------------------------------------------------------------- /src/main/java/com/aftersnows/JVM/Defense/DEF.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/src/main/java/com/aftersnows/JVM/Defense/DEF.java -------------------------------------------------------------------------------- /src/main/java/com/aftersnows/JVM/Defense/DEFUtils.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/src/main/java/com/aftersnows/JVM/Defense/DEFUtils.java -------------------------------------------------------------------------------- /src/main/java/com/aftersnows/JVM/Defense/HTTPServiceDEF.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/src/main/java/com/aftersnows/JVM/Defense/HTTPServiceDEF.java -------------------------------------------------------------------------------- /src/main/java/com/aftersnows/JVM/Defense/agentDEF.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/src/main/java/com/aftersnows/JVM/Defense/agentDEF.java -------------------------------------------------------------------------------- /src/main/java/com/aftersnows/JVM/DumpClass/DumpProcessMemory.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/src/main/java/com/aftersnows/JVM/DumpClass/DumpProcessMemory.java -------------------------------------------------------------------------------- /src/main/java/com/aftersnows/JVM/HotSpot.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/src/main/java/com/aftersnows/JVM/HotSpot.java -------------------------------------------------------------------------------- /src/main/java/com/aftersnows/JVM/JVMTest.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/src/main/java/com/aftersnows/JVM/JVMTest.java -------------------------------------------------------------------------------- /src/main/java/com/aftersnows/check/CheckUtils.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/src/main/java/com/aftersnows/check/CheckUtils.java -------------------------------------------------------------------------------- /src/main/java/com/aftersnows/filter/TimerFilter.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/src/main/java/com/aftersnows/filter/TimerFilter.java -------------------------------------------------------------------------------- /src/main/java/com/aftersnows/filter/WebsocketsFilter.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/src/main/java/com/aftersnows/filter/WebsocketsFilter.java -------------------------------------------------------------------------------- /src/main/java/com/aftersnows/filter/filtersFilter.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/src/main/java/com/aftersnows/filter/filtersFilter.java -------------------------------------------------------------------------------- /src/main/java/com/aftersnows/filter/listenersFilter.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/src/main/java/com/aftersnows/filter/listenersFilter.java -------------------------------------------------------------------------------- /src/main/java/com/aftersnows/filter/servletsFilter.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/src/main/java/com/aftersnows/filter/servletsFilter.java -------------------------------------------------------------------------------- /src/main/java/com/aftersnows/filter/valuesFilter.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/src/main/java/com/aftersnows/filter/valuesFilter.java -------------------------------------------------------------------------------- /src/main/java/com/aftersnows/transform/ClassDumpTransformer.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/src/main/java/com/aftersnows/transform/ClassDumpTransformer.java -------------------------------------------------------------------------------- /src/main/java/com/aftersnows/transform/KillFilter.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/src/main/java/com/aftersnows/transform/KillFilter.java -------------------------------------------------------------------------------- /src/main/java/com/aftersnows/transform/KillListener.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/src/main/java/com/aftersnows/transform/KillListener.java -------------------------------------------------------------------------------- /src/main/java/com/aftersnows/transform/KillServlet.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/src/main/java/com/aftersnows/transform/KillServlet.java -------------------------------------------------------------------------------- /src/main/java/com/aftersnows/transform/KillTimer.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/src/main/java/com/aftersnows/transform/KillTimer.java -------------------------------------------------------------------------------- /src/main/java/com/aftersnows/transform/KillValue.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/src/main/java/com/aftersnows/transform/KillValue.java -------------------------------------------------------------------------------- /src/main/java/com/aftersnows/transform/KillWebsocket.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/src/main/java/com/aftersnows/transform/KillWebsocket.java -------------------------------------------------------------------------------- /src/main/java/com/aftersnows/transform/socketVim.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/src/main/java/com/aftersnows/transform/socketVim.java -------------------------------------------------------------------------------- /src/main/java/com/aftersnows/utils/JarFileHelper.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/src/main/java/com/aftersnows/utils/JarFileHelper.java -------------------------------------------------------------------------------- /src/main/java/com/aftersnows/utils/ModuleLoader.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/src/main/java/com/aftersnows/utils/ModuleLoader.java -------------------------------------------------------------------------------- /src/main/java/com/aftersnows/utils/VirtualMachineClassLoader.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/src/main/java/com/aftersnows/utils/VirtualMachineClassLoader.java -------------------------------------------------------------------------------- /src/main/java/com/aftersnows/utils/utils.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/src/main/java/com/aftersnows/utils/utils.java -------------------------------------------------------------------------------- /src/main/java/com/aftersnows/visitor/FilterKillVisitor.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/src/main/java/com/aftersnows/visitor/FilterKillVisitor.java -------------------------------------------------------------------------------- /src/main/java/com/aftersnows/visitor/ListenerKillVisitor.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/src/main/java/com/aftersnows/visitor/ListenerKillVisitor.java -------------------------------------------------------------------------------- /src/main/java/com/aftersnows/visitor/ServletKillVisitor.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/src/main/java/com/aftersnows/visitor/ServletKillVisitor.java -------------------------------------------------------------------------------- /src/main/java/com/aftersnows/visitor/TimerKillVisitor.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/src/main/java/com/aftersnows/visitor/TimerKillVisitor.java -------------------------------------------------------------------------------- /src/main/java/com/aftersnows/visitor/ValueKillVisitor.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/src/main/java/com/aftersnows/visitor/ValueKillVisitor.java -------------------------------------------------------------------------------- /src/main/java/com/aftersnows/visitor/WebsocketKillVisitor.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/src/main/java/com/aftersnows/visitor/WebsocketKillVisitor.java -------------------------------------------------------------------------------- /src/test/java/FindEvilAgent.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/src/test/java/FindEvilAgent.java -------------------------------------------------------------------------------- /src/test/java/test.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/AfterSnows/ApricusFindEvil/HEAD/src/test/java/test.java --------------------------------------------------------------------------------