2bdenny / ReScue

Related projects ⓘ

Alternatives and complementary repositories for ReScue

• yetingli / ReDoSHunter
  ReDoSHunter: A Combined Static and Dynamic Approach for Regular Expression DoS Detection
  ☆75Updated last year
• NicolaasWeideman / RegexStaticAnalysis
  A tool to perform static analysis on regexes to determine whether they are vulnerable to ReDoS.
  ☆110Updated 2 years ago
• veracode-research / spring-view-manipulation
  When MVC magic turns black
  ☆286Updated 4 years ago
• githubsatelliteworkshops / codeql
  GitHub Satellite 2020 workshops on finding security vulnerabilities with CodeQL for Java/JavaScript.
  ☆208Updated last month
• SecuringWeb / BlackWidow
  ☆44Updated last year
• PalindromeLabs / Java-Deserialization-CVEs
  Compiled dataset of Java deserialization CVEs
  ☆60Updated 4 years ago
• cdaller / security_taint_propagation
  Java taint propagation for java. Define tainted sources, sanitizer methods and sinks via aspects.
  ☆27Updated 6 years ago
• ZeddYu / HTTP-Smuggling-Lab
  Use HTTP Smuggling Lab to learn HTTP Smuggling.
  ☆344Updated 2 years ago
• bahruzjabiyev / frameshifter
  Grammar-based HTTP/2 fuzzer with mutation ability
  ☆42Updated 2 years ago
• malteskoruppa / phpjoern
  Parser utility to generate ASTs from PHP source code suitable to be processed by Joern.
  ☆34Updated 4 years ago
• WSP-LAB / FUSE
  A penetration testing tool for finding file upload bugs (NDSS 2020)
  ☆249Updated 3 years ago
• SaneBow / redirect-fuzzer
  Fuzzing script for redirect URL validator
  ☆48Updated 4 years ago
• SAP-archive / node-rasp
  An extended Node.js runtime with additional security mechanisms built-in. Protects your Node.js applications from injection attacks such …
  ☆31Updated 3 years ago
• 0ang3el / websocket-smuggle
  Issues with WebSocket reverse proxying allowing to smuggle HTTP requests
  ☆337Updated 3 months ago
• PortSwigger / json-web-token-attacker
  ☆107Updated 2 years ago
• tgianko / deemon
  Deemon is a tool to detect CSRF in web applications. Deemon has been used for the paper "Deemon: Detecting CSRF with Dynamic Analysis and…
  ☆74Updated 6 years ago
• regilero / HTTPWookiee
  HTTPWookiee is an HTTP server and proxy stress tool (respect of RFC, HTTP Smuggling issues, etc). If you run an HTTP server project conta…
  ☆49Updated 6 years ago
• irsdl / httpninja
  HTTP.ninja
  ☆147Updated last year
• pyn3rd / Spring-Boot-Vulnerability
  ☆398Updated 2 years ago
• chaitin / sqlchop
  [DEPRECATED]A novel SQL injection detection engine built on top of SQL tokenizing and syntax analysis.
  ☆252Updated 8 months ago
• PortSwigger / burp-extender-api
  Burp Wiener API (Legacy)
  ☆57Updated 11 months ago
• frohoff / marshalsec
  ☆72Updated 7 years ago
• beched / php_disable_functions_bypass
  procfs-based PHP sandbox bypass
  ☆133Updated 6 years ago
• securitum / research
  research
  ☆150Updated 8 months ago
• opnsec / postMessage-logger
  Simple "postMessage logger" Chrome extension
  ☆92Updated 4 years ago
• Song-Li / ODGen
  ODGen is a JavaScript Static Analysis tool to detect multiple types of vulnerabilities in Node.js packages.
  ☆147Updated 9 months ago
• neex / ffmpeg-avi-m3u-xbin
  ☆414Updated 7 years ago
• mo-xiaoxi / HDiff
  ☆24Updated 2 years ago
• SoheilKhodayari / JAW
  JAW: A Graph-based Security Analysis Framework for Client-side JavaScript
  ☆99Updated last week