Konano / ReqsMinerLinks
[NDSS 2024] ReqsMiner is an innovative fuzzing framework developed to discover previously unexamined inconsistencies in CDN forwarding requests. The framework uses techniques derived from reinforcement learning to generate valid test cases, even with minimal feedback, and incorporates real field values into the grammar-based fuzzer.
☆21Updated last year
Alternatives and similar repositories for ReqsMiner
Users that are interested in ReqsMiner are comparing it to the libraries listed below
Sorting:
- ☆25Updated 3 years ago
- Artifact for ICSE 2023☆49Updated 2 years ago
- Grammar-based HTTP/2 fuzzer with mutation ability☆47Updated 3 years ago
- Atropos: Effective Fuzzing of Web Applications for Server-Side Vulnerabilities☆71Updated last year
- ☆27Updated last year
- Auto-generated CodeQL rules for matching CVE vulnerabilities and variants.☆179Updated 11 months ago
- ☆15Updated 2 years ago
- FUGIO: Automatic Exploit Generation for PHP Object Injection Vulnerabilities☆95Updated last year
- Effective ReDoS Detection by Principled Vulnerability Modeling and Exploit Generation☆14Updated last month
- ☆18Updated 2 months ago
- FuzzCache: Optimizing Web Application Fuzzing Through Software-Based Data Cache (ACM CCS 2024)☆16Updated 9 months ago
- This project runs a Model Context Protocol (MCP) server that wraps the CodeQL query server. It enables tools like [Cursor](https://cursor…☆106Updated 5 months ago
- a dataflow analysis framework implemented in Go, like soot☆36Updated 2 years ago
- 漏洞规则库是一个致力于帮助开发者识别和避免常见安全漏洞的开源项目。我们收集、整理和分析各类编程语言和常用库中的安全漏洞模式,并提供相应的防范措施和最佳实践。☆27Updated 3 weeks ago
- ☆21Updated 3 years ago
- Parser utility to generate ASTs from PHP source code suitable to be processed by Joern.☆36Updated 5 years ago
- ReDoSHunter: A Combined Static and Dynamic Approach for Regular Expression DoS Detection☆79Updated 2 years ago
- A grey-box web application Fuzzer☆23Updated last year
- ☆64Updated 3 years ago
- ☆41Updated 2 years ago
- Fuzzing dictionaries for afl-fuzz/LibFuzzer☆90Updated 4 years ago
- A set of Code-ql/Joern queries to find vulnerabilities☆64Updated 4 years ago
- Taint analysis implementation based on Heros and Soot☆45Updated last year
- ☆42Updated 3 years ago
- Challenge attachments for RWCTF 3rd.☆92Updated 4 years ago
- ☆38Updated 3 years ago
- A benchmark to evaluate taint analysis☆29Updated 3 years ago
- Collect public CTF source code repo☆47Updated 3 years ago
- Detecting Flow of Sensitive Data in Mini-Programs with Static Taint Analysis☆77Updated last year
- [USENIX Security '25] My ZIP isn’t your ZIP: Identifying and Exploiting Semantic Gaps Between ZIP Parsers☆24Updated last week