2bdenny / ReScue

Related projects ⓘ

Alternatives and complementary repositories for ReScue

• yetingli / ReDoSHunter
  ReDoSHunter: A Combined Static and Dynamic Approach for Regular Expression DoS Detection
  ☆75Updated last year
• ZeddYu / HTTP-Smuggling-Lab
  Use HTTP Smuggling Lab to learn HTTP Smuggling.
  ☆344Updated last year
• veracode-research / spring-view-manipulation
  When MVC magic turns black
  ☆285Updated 4 years ago
• githubsatelliteworkshops / codeql
  GitHub Satellite 2020 workshops on finding security vulnerabilities with CodeQL for Java/JavaScript.
  ☆207Updated last month
• NickstaDB / DeserLab
  Java deserialization exploitation lab.
  ☆236Updated 5 years ago
• PalindromeLabs / Java-Deserialization-CVEs
  Compiled dataset of Java deserialization CVEs
  ☆60Updated 4 years ago
• mbechler / serianalyzer
  A static byte code analyzer for Java deserialization gadget research
  ☆241Updated 7 years ago
• malteskoruppa / phpjoern
  Parser utility to generate ASTs from PHP source code suitable to be processed by Joern.
  ☆34Updated 4 years ago
• WSP-LAB / FUSE
  A penetration testing tool for finding file upload bugs (NDSS 2020)
  ☆249Updated 3 years ago
• pyn3rd / Spring-Boot-Vulnerability
  ☆398Updated 2 years ago
• doyensec / StandardizedImageProcessingTest
  A test suite built with Mocha/Chai to test for behavioral differences between image libraries for the web
  ☆69Updated 4 years ago
• Contrast-Security-OSS / joogle
  A static analysis API for finding deserialization attack gadgets
  ☆38Updated 2 years ago
• irsdl / httpninja
  HTTP.ninja
  ☆147Updated last year
• bahruzjabiyev / t-reqs
  Grammar-based HTTP/1 fuzzer with mutation ability
  ☆243Updated last week
• NicolaasWeideman / RegexStaticAnalysis
  A tool to perform static analysis on regexes to determine whether they are vulnerable to ReDoS.
  ☆110Updated 2 years ago
• SaneBow / redirect-fuzzer
  Fuzzing script for redirect URL validator
  ☆48Updated 4 years ago
• cdaller / security_taint_propagation
  Java taint propagation for java. Define tainted sources, sanitizer methods and sinks via aspects.
  ☆27Updated 6 years ago
• opnsec / postMessage-logger
  Simple "postMessage logger" Chrome extension
  ☆92Updated 4 years ago
• ajinabraham / libsast
  Generic SAST Library
  ☆124Updated last week
• pwntester / SerialKillerBypassGadgetCollection
  Collection of bypass gadgets to extend and wrap ysoserial payloads
  ☆350Updated 2 years ago
• ikkisoft / SerialKiller
  Look-Ahead Java Deserialization Library
  ☆405Updated 4 years ago
• bahruzjabiyev / frameshifter
  Grammar-based HTTP/2 fuzzer with mutation ability
  ☆42Updated 2 years ago
• CSPF-Founder / JavaVulnerableLab
  Vulnerable Java based Web Application
  ☆255Updated 4 months ago
• neex / ffmpeg-avi-m3u-xbin
  ☆414Updated 7 years ago
• h3xstream / http-script-generator
  ZAP/Burp plugin that generate script to reproduce a specific HTTP request (Intended for fuzzing or scripted attacks)
  ☆288Updated last year
• mogwailabs / rmi-deserialization
  Slides/Demos from the BSides Munich 2019 talk "Attacking Java RMI in 2019"
  ☆101Updated 5 years ago
• PortSwigger / burp-extender-api
  Burp Wiener API (Legacy)
  ☆57Updated 11 months ago
• Barro / java-afl
  Binary rewriting approach with fork server support to fuzz Java applications with afl-fuzz.
  ☆88Updated 6 years ago
• cvebase / cvebase.com
  cvebase is a community-driven vulnerability data platform to discover the world's top security researchers and their latest disclosed vul…
  ☆139Updated 3 years ago