Updated: Feb 15, 2024
Guide Kit Here are some famous Java Security Libraries. Java Security Libraries provides the developer with a comprehensive security framework for writing applications, and also provides the user or administrator with a set of tools to securely manage applications.
Java security technology includes a large set of APIs, tools, and implementations of commonly used security algorithms, mechanisms, and protocols. The Java security APIs span a wide range of areas, including cryptography, public key infrastructure, secure communication, authentication, and access control.
Let us have a look at some of the famous Java Security Libraries.
tink
- Powers the Jetpack Security library.
- Provides support for key management, including key rotation and phasing out deprecated ciphers.
- Secures many popular Android apps like Slack, Adidas, AirBnb, and Nextdoor.
tinkby google
13182 Version:v1.7.0Tink is a multi-language, cross-platform, open source library that provides cryptographic APIs that are secure, easy to use correctly, and hard(er) to misuse.
tinkby google
Java 13182 Version:v1.7.0 License: Permissive (Apache-2.0)
JustTrustMe
- Exposed module that disables SSL certificate checking for the purposes of auditing an app with cert pinning.
- Releases are available to install and integrate.
- Java library typically used in Security, TLS applications.
JustTrustMeby Fuzion24
4221 Version:v.2An xposed module that disables SSL certificate checking for the purposes of auditing an app with cert pinning
JustTrustMeby Fuzion24
Java 4221 Version:v.2 License: Others (Non-SPDX)
Cipher.so
- Encrypt secure info in a native library via easy configs.
- Reflection free.
- Has low code complexity.
Cipher.soby linisme
1319 Version:CurrentA simple way to encrypt your secure data like passwords into a native .so library.
Cipher.soby linisme
Java 1319 Version:Current License: Permissive (Apache-2.0)
PocList
- Java library typically used in Security, Hacking applications.
- Has no bugs, it has no vulnerabilities and it has medium support.
- Best practice is to use a build tool that supports dependency management such as Maven or Gradle.
PocListby Yang0615777
842 Version:Current
License: No License (null)Alibaba-Nacos-Unauthorized/ApacheDruid-RCE_CVE-2021-25646/MS-Exchange-SSRF-CVE-2021-26885/Oracle-WebLogic-CVE-2021-2109_RCE/RG-CNVD-2021-14536/RJ-SSL-VPN-UltraVires/Redis-Unauthorized-RCE/TDOA-V11.7-GetOnlineCookie/VMware-vCenter-GetAnyFile/yongyou-GRP-U8-XXE/Oracle-WebLogic-CVE-2020-14883/Oracle-WebLogic-CVE-2020-14882/Apache-Solr-GetAnyFile/F5-BIG-IP-CVE-2021-22986/Sonicwall-SSL-VPN-RCE/GitLab-Graphql-CNVD-2021-14193/D-Link-DCS-CVE-2020-25078/WLAN-AP-WEA453e-RCE/360TianQing-Unauthorized/360TianQing-SQLinjection/FanWeiOA-V8-SQLinjection/QiZhiBaoLeiJi-AnyUserLogin/QiAnXin-WangKangFirewall-RCE/金山-V8-终端安全系统/NCCloud-SQLinjection/ShowDoc-RCE
PocListby Yang0615777
Java 842 Version:Current License: No License
buji-pac4j
- Automate any workflow.
- Host and manage packages.
- Collaborate outside of code.
buji-pac4jby bujiio
481 Version:CurrentBridge from the pac4j security library to Shiro
buji-pac4jby bujiio
Java 481 Version:Current License: Permissive (Apache-2.0)
pki
- Certificate Authority (CA) subsystem.
- Key Recovery Authority (KRA) subsystem.
- Online Certificate Status Protocol (OCSP) subsystem.
pkiby dogtagpki
246 Version:v11.0.0The Dogtag Certificate System is an enterprise-class Certificate Authority (CA) which supports all aspects of certificate lifecycle management, including key archival, OCSP and smartcard management.
pkiby dogtagpki
Java 246 Version:v11.0.0 License: Strong Copyleft (GPL-2.0)
pro-grade
- Provides implementation of custom Java Security Managers and Security Policies.
- Works with policy file with grant entries, but you can also write deny entries.
- Plan and track work.
pro-gradeby pro-grade
32 Version:CurrentLibrary which pushes Java Security Manager further and keeps you calm when fighting security policies.
pro-gradeby pro-grade
Java 32 Version:Current License: Permissive (Apache-2.0)