java-xxe-audit

star 889

当用户要求审计 Java 源码、字节码或 pipeline 证据中的 XML 外部实体注入、XML 解析器安全配置、SOAP/XML 请求体解析、JAXP/JDOM/dom4j/StAX/JAXB/Transformer/Schema/XStream XML 解析风险时使用;只做路由枚举、调用链追踪、SQL、文件、反序列化、鉴权或组件 CVE 扫描时不要使用。

RuoJi6 By RuoJi6 schedule Updated 6/12/2026
play_arrow Run Skill in Manus View GitHub

Skill instructions (SKILL.md) could not be loaded from local cache or raw GitHub repository.

Install via CLI
npx skills add https://github.com/RuoJi6/java-audit-skills --skill java-xxe-audit
Repository Details
star Stars 889
call_split Forks 95
navigation Branch main
article Path SKILL.md
Occupations
Software Developers
More from Creator
RuoJi6
RuoJi6 Explore all skills →