The source code of [CCS'25] BACScan: Automatic Black-Box Detection of Broken-Access-Control Vulnerabilities in Web Applications
☆31Mar 16, 2026Updated this week
Alternatives and similar repositories for BACScan
Users that are interested in BACScan are comparing it to the libraries listed below
Sorting:
- ☆18Oct 15, 2023Updated 2 years ago
- ☆15Oct 31, 2022Updated 3 years ago
- Memory Webshell for Spring Web - 适用于 Spring Web 的内存马☆26Jan 18, 2024Updated 2 years ago
- This repository detects PHP webshells by converting PHP code to opcode and analyzing it using Opcode Double-Tuples (ODTs), which combine …☆43May 8, 2025Updated 10 months ago
- A benchmark for Java gadget chain detecting algorithms.☆15Jun 20, 2025Updated 9 months ago
- ☆56Feb 18, 2025Updated last year
- Custom / Experimental CodeQL queries☆36Apr 21, 2022Updated 3 years ago
- Decompiler of BOC files☆23Jun 11, 2025Updated 9 months ago
- ☆18Nov 6, 2024Updated last year
- Artifact for ICSE 2023☆50Sep 24, 2022Updated 3 years ago
- 用codeql分析grafana最新任意文件读取☆11Dec 10, 2021Updated 4 years ago
- A public project which includes all test cases for fireline.☆16Jun 1, 2017Updated 8 years ago
- Hacking GraalVM Espresso - Abusing Continuation API to Make ROP-like Attack☆36Aug 27, 2025Updated 6 months ago
- Characterizing Transaction-Reverting Statements in Ethereum Smart Contracts.☆11Sep 1, 2021Updated 4 years ago
- ☆17Apr 7, 2023Updated 2 years ago
- ☆44Sep 4, 2025Updated 6 months ago
- Apache Superset Auth Bypass (CVE-2023-27524)☆11May 9, 2023Updated 2 years ago
- 信息收集☆26Mar 20, 2024Updated 2 years ago
- Automatically check your GPA☆21Jun 17, 2025Updated 9 months ago
- Ranking LLM-Generated Loop Invariants for Program Verification.☆12Aug 20, 2024Updated last year
- Code of Truman: Constructing Device Behavior Models from OS Drivers to Fuzz Virtual Devices (NDSS 2025)☆24Apr 11, 2025Updated 11 months ago
- ☆13Oct 10, 2023Updated 2 years ago
- Code and scripts for NAACL 2022 industry track paper "Fast and Light-weight Answer Text Retrieval in Dialogue Systems". Built on top of C…☆13Sep 17, 2025Updated 6 months ago
- Protect your PHP project from deserialization attacks! As seen on NDSS 2024☆15Aug 8, 2025Updated 7 months ago
- A PHP extension for hooking eval()☆76Oct 13, 2023Updated 2 years ago
- ☆25Jul 2, 2024Updated last year
- Software Analysis and Verification Group☆15Nov 11, 2025Updated 4 months ago
- This repository contains information related to the Root Cause Mapping Working Group and its activities. CVE Numbering Authority (CNA) re…☆16Jan 29, 2025Updated last year
- ☆17Sep 22, 2024Updated last year
- a new class of file structure attacks☆59Nov 19, 2022Updated 3 years ago
- A list of "secrets" from JWT sample code and readme files.☆57Oct 28, 2020Updated 5 years ago
- Enable users of your application to debug and test it☆16Updated this week
- Repository of benchmarks to evaluate Solidity Smart contract analysis tools☆16Jun 23, 2020Updated 5 years ago
- A Unified Platform for Evaluating SAST Tools for Android☆19Mar 30, 2025Updated 11 months ago
- DeJITLeak: Eliminating JIT-Induced Timing Side-Channel Leaks☆15Sep 15, 2022Updated 3 years ago
- GitHub Repository complementing the EMNLP 2018 paper Adaptive Document Retrieval for Deep Question Answering☆15Nov 1, 2018Updated 7 years ago
- CodeQL library and queries for iterator invalidation☆22Mar 12, 2026Updated last week
- ☆206Oct 27, 2025Updated 4 months ago
- Evaluation of BEIR Datasets using ColBERT retrieval model☆18Mar 4, 2022Updated 4 years ago