Konano / ReqsMinerLinks
[NDSS 2024] ReqsMiner is an innovative fuzzing framework developed to discover previously unexamined inconsistencies in CDN forwarding requests. The framework uses techniques derived from reinforcement learning to generate valid test cases, even with minimal feedback, and incorporates real field values into the grammar-based fuzzer.
☆21Updated last year
Alternatives and similar repositories for ReqsMiner
Users that are interested in ReqsMiner are comparing it to the libraries listed below
Sorting:
- ☆25Updated 3 years ago
- Grammar-based HTTP/2 fuzzer with mutation ability☆47Updated 3 years ago
- Auto-generated CodeQL rules for matching CVE vulnerabilities and variants.☆180Updated last year
- FUGIO: Automatic Exploit Generation for PHP Object Injection Vulnerabilities☆94Updated last year
- ☆16Updated 2 years ago
- Artifact for ICSE 2023☆49Updated 3 years ago
- YASA is an open-source static program analysis project. Its core innovation lies in a unified intermediate representation called UAST, d…☆85Updated last week
- Atropos: Effective Fuzzing of Web Applications for Server-Side Vulnerabilities☆72Updated last year
- FuzzCache: Optimizing Web Application Fuzzing Through Software-Based Data Cache (ACM CCS 2024)☆16Updated 10 months ago
- ☆27Updated last year
- 漏洞规则库是一个致力于帮助开发者识别和避免常见安全漏洞的开源项目。我们收集、整理和分析各类编程语言和常用库中的安全漏洞模式,并提供相应的防范措施和最佳实践。☆28Updated last month
- Testability Tarpits: the Impact of Code Patterns on the Security Testing of Web Applications (NDSS 2022)☆25Updated last year
- Collect public CTF source code repo☆47Updated 4 years ago
- Challenge attachments for RWCTF 3rd.☆92Updated 4 years ago
- A grey-box web application Fuzzer☆23Updated last year
- Parser utility to generate ASTs from PHP source code suitable to be processed by Joern.☆35Updated 5 years ago
- ReDoSHunter: A Combined Static and Dynamic Approach for Regular Expression DoS Detection☆79Updated 2 years ago
- Effective ReDoS Detection by Principled Vulnerability Modeling and Exploit Generation☆13Updated 2 months ago
- ☆21Updated 3 years ago
- A set of Code-ql/Joern queries to find vulnerabilities☆64Updated 4 years ago
- Fuzzing dictionaries for afl-fuzz/LibFuzzer☆90Updated 4 years ago
- ☆64Updated 3 years ago
- Testability Pattern Catalogs for SAST☆31Updated 7 months ago
- This project runs a Model Context Protocol (MCP) server that wraps the CodeQL query server. It enables tools like [Cursor](https://cursor…☆115Updated 5 months ago
- a dataflow analysis framework implemented in Go, like soot☆36Updated 3 years ago
- ☆42Updated 3 years ago
- my exp for chrome V8 CVE-2021-30551☆24Updated 2 years ago
- ☆38Updated 4 years ago
- Collate and collect binary related materials, including papers, tools, etc. Now,there are the following categories: 1、Fuzzing☆57Updated 6 years ago
- ☆19Updated 2 weeks ago