Java Web 源码任意文件读取漏洞审计工具。从源码中识别所有文件读取操作并分析路径遍历风险。适用于:(1) 识别文件读取框架和实现方式,(2) 发现任意文件读取漏洞,(3) 分析路径遍历攻击风险,(4) 审计文件路径参数校验逻辑。支持 BufferedReader、Scanner、Files.lines/readAllLines/readAllBytes 等方法。**支持反编译 .class/.jar 文件提取文件操作逻辑**。结合 java-route-mapper 使用可实现完整的路由+文件读取审计。
Key Features
- Comprehensive skill evaluation and performance tracking
- Community-driven ratings and reviews
- Easy integration with Claude Code
- Regular updates and maintenance
Quick Start
TopRank Skills install RuoJi6/java-file-read-auditchat Comments (0)
Sign in to join the discussion and leave a comment.
Skill Details
GitHub Stars
256
GitHub Forks
32
Created
Mar 2026
Last Updated
3 months ago
tools
tools debugging
Related Skills
Build your own?
Join 12,000+ developers contributing to the Claude ecosystem.
No comments yet. Be the first to share your thoughts!