4ra1n

Follow

4ra1n 4ra1n

Follow

Java Security Researcher, Contributors of chaitin/xray vulnerability scanner, vulhub and java-chains, Creator of jar-analyzer and class-obf project.

3.2k followers · 231 following

18:03 (UTC +08:00)
https://4ra1n.github.io/

Organizations

4ra1n/README.md

关于

My blog | 我的博客: 4ra1n.github.io

About me | 关于我: 4ra1n/SECURITY.md

Email | 联系我:

[email protected]

Projects | 主要维护开源项目:

jar-analyzer

Pinned Loading

jar-analyzer/jar-analyzer jar-analyzer/jar-analyzer Public

Jar Analyzer - 一个 JAR 包 GUI 分析工具，方法调用关系搜索，方法调用链 DFS 算法分析，模拟 JVM 的污点分析验证 DFS 结果，字符串搜索，Java Web 组件入口分析，CFG 程序分析，JVM 栈帧分析，自定义表达式搜索，紧跟 AI 技术发展，支持 MCP 调用，支持 n8n 工作流，文档：https://docs.qq.com/doc/DV3pKbG9GS…

Java 1.9k 185
jar-analyzer/jar-analyzer-claude jar-analyzer/jar-analyzer-claude Public

Claude Code plugin for Java JAR security audit — 基于 jar-analyzer 的 Claude Code 安全审计插件，构建数据库，AI 深入分析

15
jar-analyzer/jar-analyzer-engine jar-analyzer/jar-analyzer-engine Public

Java bytecode analysis engine built on ASM, extracts method call graphs, inheritance trees, Spring routes, and string constants from JAR/WAR into SQLite. AI-friendly output for security auditing.

Java 20 2
class-obf class-obf Public

一个 CLASS 文件混淆工具，支持方法字段参数名引用分析和重命名混淆，支持字符串提取/AES加密运行时解密/整型异或混淆/垃圾代码花指令混淆/错误注解崩溃/特殊字符迷惑用户/反编译器对抗/方法和字段的隐藏等，配置简单，容易上手

Java 310 24
vulhub/vulhub vulhub/vulhub Public

Pre-Built Vulnerable Environments Based on Docker-Compose

Dockerfile 20.4k 4.8k
vulhub/java-chains vulhub/java-chains Public

Java Vulnerability Exploitation Platform

Dockerfile 2k 167