├── .idea ├── .gitignore ├── CodeScan-master.iml └── modules.xml ├── CommonVul ├── Rce │ └── Rce.go ├── Rule │ ├── MatchFileNameRule.go │ ├── MatchFileReadRule.go │ ├── MatchLineRule.go │ ├── MatchPathRule.go │ ├── MatchRceRule.go │ ├── MatchUploadRule.go │ ├── MtachSqlRule.go │ ├── ReStaticVar.go │ └── Utils.go └── Upload │ └── Upload_check.go ├── EvilJarList.txt ├── Filter └── FilterFile.go ├── FilterResult.txt ├── FindFile ├── Common.go ├── FindFile_Java.go └── FindFile_PHP.go ├── Java-Code ├── AMF │ └── AmfCheck.go ├── Auth_Bypass │ └── Authcheck.go ├── El │ └── Elcheck.go ├── Fastjson │ └── parsecheck.go ├── Frame_Analysis │ └── Frame_Analysiser.go ├── JDBC │ └── FindJDBC.go ├── JNDI │ └── Jndi.go ├── JS │ └── Jseval.go ├── JarStatic │ └── Jarstaticer.go ├── JavaSrciptShell │ └── FindJavaSrciptShell.go ├── Log4j │ └── Log4j2.go ├── ReadObject │ └── readobject.go ├── Reflect │ └── Reflect.go ├── SSTI │ └── FreeMarker │ │ └── FreeSsti.go ├── Sql │ ├── FindSqlByCode.go │ ├── FindSqlByXml.go │ └── Sql.go └── Zip │ └── Zipsilp.go ├── PHP-Code ├── FileRead │ └── Read.go ├── FileWrite │ └── Write.go ├── Include │ └── Include.go ├── PHPSql │ ├── FindSqlByCode.go │ └── Sql.go ├── SSRF │ └── SSRF.go └── Unserialize │ └── ser.go ├── README.md ├── Utils ├── JavaScanUtil.go ├── PHPScanUtil.go ├── common.go └── flag.go ├── go.mod ├── go.sum ├── jarFiles.txt └── main.go /.idea/.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/.idea/.gitignore -------------------------------------------------------------------------------- /.idea/CodeScan-master.iml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/.idea/CodeScan-master.iml -------------------------------------------------------------------------------- /.idea/modules.xml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/.idea/modules.xml -------------------------------------------------------------------------------- /CommonVul/Rce/Rce.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/CommonVul/Rce/Rce.go -------------------------------------------------------------------------------- /CommonVul/Rule/MatchFileNameRule.go: -------------------------------------------------------------------------------- 1 | package Rule 2 | -------------------------------------------------------------------------------- /CommonVul/Rule/MatchFileReadRule.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/CommonVul/Rule/MatchFileReadRule.go -------------------------------------------------------------------------------- /CommonVul/Rule/MatchLineRule.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/CommonVul/Rule/MatchLineRule.go -------------------------------------------------------------------------------- /CommonVul/Rule/MatchPathRule.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/CommonVul/Rule/MatchPathRule.go -------------------------------------------------------------------------------- /CommonVul/Rule/MatchRceRule.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/CommonVul/Rule/MatchRceRule.go -------------------------------------------------------------------------------- /CommonVul/Rule/MatchUploadRule.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/CommonVul/Rule/MatchUploadRule.go -------------------------------------------------------------------------------- /CommonVul/Rule/MtachSqlRule.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/CommonVul/Rule/MtachSqlRule.go -------------------------------------------------------------------------------- /CommonVul/Rule/ReStaticVar.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/CommonVul/Rule/ReStaticVar.go -------------------------------------------------------------------------------- /CommonVul/Rule/Utils.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/CommonVul/Rule/Utils.go -------------------------------------------------------------------------------- /CommonVul/Upload/Upload_check.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/CommonVul/Upload/Upload_check.go -------------------------------------------------------------------------------- /EvilJarList.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/EvilJarList.txt -------------------------------------------------------------------------------- /Filter/FilterFile.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/Filter/FilterFile.go -------------------------------------------------------------------------------- /FilterResult.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/FilterResult.txt -------------------------------------------------------------------------------- /FindFile/Common.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/FindFile/Common.go -------------------------------------------------------------------------------- /FindFile/FindFile_Java.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/FindFile/FindFile_Java.go -------------------------------------------------------------------------------- /FindFile/FindFile_PHP.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/FindFile/FindFile_PHP.go -------------------------------------------------------------------------------- /Java-Code/AMF/AmfCheck.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/Java-Code/AMF/AmfCheck.go -------------------------------------------------------------------------------- /Java-Code/Auth_Bypass/Authcheck.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/Java-Code/Auth_Bypass/Authcheck.go -------------------------------------------------------------------------------- /Java-Code/El/Elcheck.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/Java-Code/El/Elcheck.go -------------------------------------------------------------------------------- /Java-Code/Fastjson/parsecheck.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/Java-Code/Fastjson/parsecheck.go -------------------------------------------------------------------------------- /Java-Code/Frame_Analysis/Frame_Analysiser.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/Java-Code/Frame_Analysis/Frame_Analysiser.go -------------------------------------------------------------------------------- /Java-Code/JDBC/FindJDBC.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/Java-Code/JDBC/FindJDBC.go -------------------------------------------------------------------------------- /Java-Code/JNDI/Jndi.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/Java-Code/JNDI/Jndi.go -------------------------------------------------------------------------------- /Java-Code/JS/Jseval.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/Java-Code/JS/Jseval.go -------------------------------------------------------------------------------- /Java-Code/JarStatic/Jarstaticer.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/Java-Code/JarStatic/Jarstaticer.go -------------------------------------------------------------------------------- /Java-Code/JavaSrciptShell/FindJavaSrciptShell.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/Java-Code/JavaSrciptShell/FindJavaSrciptShell.go -------------------------------------------------------------------------------- /Java-Code/Log4j/Log4j2.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/Java-Code/Log4j/Log4j2.go -------------------------------------------------------------------------------- /Java-Code/ReadObject/readobject.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/Java-Code/ReadObject/readobject.go -------------------------------------------------------------------------------- /Java-Code/Reflect/Reflect.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/Java-Code/Reflect/Reflect.go -------------------------------------------------------------------------------- /Java-Code/SSTI/FreeMarker/FreeSsti.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/Java-Code/SSTI/FreeMarker/FreeSsti.go -------------------------------------------------------------------------------- /Java-Code/Sql/FindSqlByCode.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/Java-Code/Sql/FindSqlByCode.go -------------------------------------------------------------------------------- /Java-Code/Sql/FindSqlByXml.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/Java-Code/Sql/FindSqlByXml.go -------------------------------------------------------------------------------- /Java-Code/Sql/Sql.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/Java-Code/Sql/Sql.go -------------------------------------------------------------------------------- /Java-Code/Zip/Zipsilp.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/Java-Code/Zip/Zipsilp.go -------------------------------------------------------------------------------- /PHP-Code/FileRead/Read.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/PHP-Code/FileRead/Read.go -------------------------------------------------------------------------------- /PHP-Code/FileWrite/Write.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/PHP-Code/FileWrite/Write.go -------------------------------------------------------------------------------- /PHP-Code/Include/Include.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/PHP-Code/Include/Include.go -------------------------------------------------------------------------------- /PHP-Code/PHPSql/FindSqlByCode.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/PHP-Code/PHPSql/FindSqlByCode.go -------------------------------------------------------------------------------- /PHP-Code/PHPSql/Sql.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/PHP-Code/PHPSql/Sql.go -------------------------------------------------------------------------------- /PHP-Code/SSRF/SSRF.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/PHP-Code/SSRF/SSRF.go -------------------------------------------------------------------------------- /PHP-Code/Unserialize/ser.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/PHP-Code/Unserialize/ser.go -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/README.md -------------------------------------------------------------------------------- /Utils/JavaScanUtil.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/Utils/JavaScanUtil.go -------------------------------------------------------------------------------- /Utils/PHPScanUtil.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/Utils/PHPScanUtil.go -------------------------------------------------------------------------------- /Utils/common.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/Utils/common.go -------------------------------------------------------------------------------- /Utils/flag.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/Utils/flag.go -------------------------------------------------------------------------------- /go.mod: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/go.mod -------------------------------------------------------------------------------- /go.sum: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/go.sum -------------------------------------------------------------------------------- /jarFiles.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/jarFiles.txt -------------------------------------------------------------------------------- /main.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/Zjackky/CodeScan/HEAD/main.go --------------------------------------------------------------------------------