Konano / ReqsMinerLinks
[NDSS 2024] ReqsMiner is an innovative fuzzing framework developed to discover previously unexamined inconsistencies in CDN forwarding requests. The framework uses techniques derived from reinforcement learning to generate valid test cases, even with minimal feedback, and incorporates real field values into the grammar-based fuzzer.
☆23Updated last year
Alternatives and similar repositories for ReqsMiner
Users that are interested in ReqsMiner are comparing it to the libraries listed below
Sorting:
- ☆25Updated 3 years ago
- Grammar-based HTTP/2 fuzzer with mutation ability☆47Updated 3 years ago
- Atropos: Effective Fuzzing of Web Applications for Server-Side Vulnerabilities☆72Updated last year
- Auto-generated CodeQL rules for matching CVE vulnerabilities and variants.☆181Updated last year
- FUGIO: Automatic Exploit Generation for PHP Object Injection Vulnerabilities☆96Updated last year
- Artifact for ICSE 2023☆50Updated 3 years ago
- YASA is an open-source static program analysis project. Its core innovation lies in a unified intermediate representation called UAST, d…☆153Updated last week
- ☆16Updated 2 years ago
- 漏洞规则库是一个致力于帮助开发者识别和避免常见安全漏洞的开源项目。我们收集、整理和分析各类编程语言和常用库中的安全漏洞模式,并提供相应的防范措施和最佳实践。☆33Updated 2 months ago
- ☆17Updated last year
- A grey-box web application Fuzzer☆23Updated last year
- ReDoSHunter: A Combined Static and Dynamic Approach for Regular Expression DoS Detection☆80Updated 2 years ago
- Fuzzing dictionaries for afl-fuzz/LibFuzzer☆91Updated 4 years ago
- a dataflow analysis framework implemented in Go, like soot☆36Updated 3 years ago
- ☆27Updated last year
- This project runs a Model Context Protocol (MCP) server that wraps the CodeQL query server. It enables tools like [Cursor](https://cursor…☆119Updated 7 months ago
- A benchmark to evaluate taint analysis☆28Updated 3 years ago
- Parser utility to generate ASTs from PHP source code suitable to be processed by Joern.☆36Updated 5 years ago
- ☆64Updated 3 years ago
- Taint analysis implementation based on Heros and Soot☆45Updated last year
- Collect public CTF source code repo☆48Updated 4 years ago
- A polyglot static analysis engine for detecting vulnerabilities in scripting languages native extensions based on joern.☆18Updated 2 months ago
- ☆43Updated 2 years ago
- Testability Tarpits: the Impact of Code Patterns on the Security Testing of Web Applications (NDSS 2022)☆25Updated last year
- Effective ReDoS Detection by Principled Vulnerability Modeling and Exploit Generation☆14Updated 3 months ago
- My CodeQL queries collection☆99Updated 2 years ago
- Challenge attachments for RWCTF 3rd.☆91Updated 4 years ago
- ☆38Updated 4 years ago
- The fuzzing framework named SHADOWFUZZER to find clientside vulnerabilities when processing incoming MQTT messages.☆20Updated 2 years ago
- 近年来容器安全相关论文收集整理☆15Updated 2 years ago