Alternatives and similar repositories for ReScue:

Users that are interested in ReScue are comparing it to the libraries listed below

• githubsatelliteworkshops / codeql
  GitHub Satellite 2020 workshops on finding security vulnerabilities with CodeQL for Java/JavaScript.
  ☆210Updated 6 months ago
• cdaller / security_taint_propagation
  Java taint propagation for java. Define tainted sources, sanitizer methods and sinks via aspects.
  ☆28Updated 6 years ago
• ZeddYu / HTTP-Smuggling-Lab
  Use HTTP Smuggling Lab to learn HTTP Smuggling.
  ☆348Updated 2 years ago
• WSP-LAB / FUSE
  A penetration testing tool for finding file upload bugs (NDSS 2020)
  ☆248Updated 4 years ago
• PalindromeLabs / Java-Deserialization-CVEs
  Compiled dataset of Java deserialization CVEs
  ☆61Updated 4 years ago
• irsdl / httpninja
  HTTP.ninja
  ☆149Updated last year
• mbechler / serianalyzer
  A static byte code analyzer for Java deserialization gadget research
  ☆241Updated 7 years ago
• regilero / HTTPWookiee
  HTTPWookiee is an HTTP server and proxy stress tool (respect of RFC, HTTP Smuggling issues, etc). If you run an HTTP server project conta…
  ☆50Updated 7 years ago
• NickstaDB / DeserLab
  Java deserialization exploitation lab.
  ☆236Updated 6 years ago
• PortSwigger / json-web-token-attacker
  ☆107Updated 3 years ago
• Contrast-Security-OSS / joogle
  A static analysis API for finding deserialization attack gadgets
  ☆38Updated 2 years ago
• frohoff / marshalsec
  ☆74Updated 7 years ago
• yetingli / ReDoSHunter
  ReDoSHunter: A Combined Static and Dynamic Approach for Regular Expression DoS Detection
  ☆78Updated 2 years ago
• codeplutos / java-security-manager-bypass
  ☆148Updated 5 years ago
• appsecco / json-flash-csrf-poc
  This repo contains the files required to perform a CSRF attack using Flash and HTTP 307 redirections.
  ☆75Updated 7 years ago
• veracode-research / spring-view-manipulation
  When MVC magic turns black
  ☆291Updated 4 years ago
• securitum / research
  research
  ☆151Updated last year
• GDSSecurity / Jetleak-Testing-Script
  Script to test if a server is vulnerable to the JetLeak vulnerability
  ☆144Updated 8 years ago
• tgianko / deemon
  Deemon is a tool to detect CSRF in web applications. Deemon has been used for the paper "Deemon: Detecting CSRF with Dynamic Analysis and…
  ☆75Updated 6 years ago
• attackercan / cpp-sql-fuzzer
  ☆55Updated 8 years ago
• 0ang3el / websocket-smuggle
  Issues with WebSocket reverse proxying allowing to smuggle HTTP requests
  ☆353Updated 7 months ago
• ikkisoft / SerialKiller
  Look-Ahead Java Deserialization Library
  ☆410Updated 5 years ago
• mogwailabs / rmi-deserialization
  Slides/Demos from the BSides Munich 2019 talk "Attacking Java RMI in 2019"
  ☆101Updated 5 years ago
• pwntester / SerialKillerBypassGadgetCollection
  Collection of bypass gadgets to extend and wrap ysoserial payloads
  ☆351Updated 2 years ago
• irsl / jackson-rce-via-spel
  An example project that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions
  ☆122Updated 7 years ago
• opnsec / postMessage-logger
  Simple "postMessage logger" Chrome extension
  ☆96Updated 4 years ago
• h3xstream / http-script-generator
  ZAP/Burp plugin that generate script to reproduce a specific HTTP request (Intended for fuzzing or scripted attacks)
  ☆290Updated last year
• makuga01 / dnsFookup
  DNS rebinding toolkit
  ☆251Updated last year
• PortSwigger / burp-extender-api
  Burp Wiener API (Legacy)
  ☆59Updated last year
• doyensec / StandardizedImageProcessingTest
  A test suite built with Mocha/Chai to test for behavioral differences between image libraries for the web
  ☆70Updated 4 years ago