GitHubSecurityLab / ruby-unsafe-deserializationLinks
Proof of Concepts for unsafe deserialization in Ruby
☆17Updated 10 months ago
Alternatives and similar repositories for ruby-unsafe-deserialization
Users that are interested in ruby-unsafe-deserialization are comparing it to the libraries listed below
Sorting:
- A collection of my Semgrep rules☆49Updated 2 years ago
- TheThing: an open-source tool to detect DOM Clobbering vulnerabilities☆51Updated last year
- This is the data that powers the PortSwigger URL validation bypass cheat sheet.☆51Updated 3 months ago
- Unsafe Unpacking Vulnerability: Lab Code, Semgrep Rules and Secure Implementation Guide☆41Updated 8 months ago
- Prototype Pollution exploits collection☆35Updated 4 years ago
- Searcher for cross-site leaks (XS-Leaks)☆82Updated 2 years ago
- A collection of Semgrep rules which followed security guidelines for .NET and Java.☆23Updated 3 years ago
- Encode and Fuzz Custom Protobuf Messages in Burp Suite☆32Updated 5 months ago
- ☆16Updated 4 years ago
- Proof-of-concept code for research into GitHub Actions Cache poisoning.☆21Updated 5 months ago
- Awesome MXSS ??☆52Updated 10 months ago
- An extension to use Semgrep inside Burp Suite.☆89Updated 3 months ago
- ☆83Updated 2 months ago
- Manager of third-party sources of Semgrep rules 🗂☆87Updated last year
- ☆22Updated 5 months ago
- List of Trusted Types bypasses☆101Updated last year
- A collection of utilities for building extensions using Burp's Montoya API☆52Updated last year
- Same Origin XSS challenge☆61Updated 3 years ago
- ☆33Updated last year
- A web server designed to shut off on command to exploit DNS rebinding in Chromium-based browsers☆14Updated 2 years ago
- ☆72Updated 3 years ago
- Guided Differential Fuzzing for HTTP Request Parsing Discrepancies☆18Updated last year
- ☆56Updated 4 years ago
- Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)☆59Updated 4 months ago
- Client-Side Prototype Pollution Tools☆85Updated 3 years ago
- Example repository for GitHub Actions Time of Check to Time of Use (TOCTOU vulnerabilities)☆31Updated 3 months ago
- ☆199Updated 9 months ago
- ☆169Updated 3 years ago
- lightyear is a tool to dump files in tedious (blind) conditions using PHP filters☆101Updated 2 months ago
- A black-box scanner for HTTP request smuggling vulnerabilities caused by chunk parsing discrepancies.☆18Updated last month