The source code of [S&P'25] Detecting Taint-Style Vulnerabilities in Microservice-Structured Web Applications.
☆66Nov 20, 2025Updated 4 months ago
Alternatives and similar repositories for MScan
Users that are interested in MScan are comparing it to the libraries listed below
Sorting:
- Hacking GraalVM Espresso - Abusing Continuation API to Make ROP-like Attack☆36Aug 27, 2025Updated 6 months ago
- The source code of [Sec'25] Make Agent Defeat Agent: Automatic Detection of Taint-Style Vulnerabilities in LLM-based Agents☆60Sep 9, 2025Updated 6 months ago
- nativeRasp that can hook native methods☆23Apr 24, 2023Updated 2 years ago
- 利用代理驱动绕过JDBC Attack检测☆143Jun 15, 2025Updated 9 months ago
- 用于快速启动tabby 分析漏洞或者gadget的环境☆94Jul 14, 2025Updated 8 months ago
- Tai-e的Web插件☆23Jun 11, 2024Updated last year
- 用于windows下通过NTFS MFT快速查找文件名中带有敏感词的文件☆44Sep 29, 2025Updated 5 months ago
- [USENIX Security '25] My ZIP isn’t your ZIP: Identifying and Exploiting Semantic Gaps Between ZIP Parsers☆38Aug 22, 2025Updated 6 months ago
- The next-generation AI Agent framework driven by Intent Engineering. Move beyond turn-based Function Calling to embrace code-level intent…☆75Jan 11, 2026Updated 2 months ago
- 高版本Fastjson在Java原生反序列化中的利用演示☆26Jan 12, 2025Updated last year
- generate facts from bytecode (source is https://github.com/plast-lab/doop-mirror/tree/master/generators)☆23Nov 24, 2024Updated last year
- Topic: The Swiss Army Knife of Java Exploitation☆21Feb 25, 2025Updated last year
- Industrial Cybersecurity Conference Index☆13Mar 11, 2024Updated 2 years ago
- 使用 Docker 一键构建 JDK 源码的 CodeQL 数据库,方便使用 CodeQL 查找 JDK 中的数据。☆27May 14, 2025Updated 10 months ago
- A benchmark for Java gadget chain detecting algorithms.☆15Jun 20, 2025Updated 9 months ago
- A vul-finder for loading CPG and automated finding vul-call-chains☆72Jul 22, 2025Updated 7 months ago
- Code audit (code review) with VIM.☆17Jan 3, 2025Updated last year
- ☆206Oct 27, 2025Updated 4 months ago
- Hessian UTF-8 Overlong Encoding☆21Mar 9, 2024Updated 2 years ago
- A Java Route Collection Tool☆102Aug 1, 2024Updated last year
- YuraScanner☆73Feb 13, 2025Updated last year
- ☆12May 28, 2021Updated 4 years ago
- Holistic Concolic Execution for Dynamic Web Applications via Symbolic Interpreter Analysis (IEEE S&P 2024)☆15Oct 3, 2024Updated last year
- ASP & ASP.NET WebShell Bypass☆68Jan 4, 2026Updated 2 months ago
- ☆28Jun 7, 2022Updated 3 years ago
- 护网杯 2018 WEB (4) easy_laravel☆12Aug 22, 2019Updated 6 years ago
- ctf awd比赛快速hook java题,提供一键流量转发,无痛修复☆56Mar 17, 2025Updated last year
- LLVM Essentials 中文版☆12Feb 18, 2025Updated last year
- Java JDK 8-18 CodeQL databases☆17Jun 2, 2024Updated last year
- [ALL IN ONE] Everything that I shared to public about Cloud Security is here.☆61Apr 19, 2025Updated 11 months ago
- Java 反序列化学习的实验代码 Java_deserialize_vuln_lab☆87Nov 26, 2018Updated 7 years ago
- ☆33May 27, 2024Updated last year
- JavaRce complements project - use RASP to prevent vulnerabilities☆24Apr 22, 2024Updated last year
- 不那么一样的 Java Agent 内存马☆289Nov 27, 2023Updated 2 years ago
- Java表达式语句生成器☆194Oct 9, 2023Updated 2 years ago
- 用来将Tai-e改造为开箱即用的静态代码安全分析框架的一些demo☆37Apr 17, 2024Updated last year
- Crawler LeetCode,爬虫挑战合集☆68Jan 28, 2026Updated last month
- YongYou U8C deserialization file upload exploit tool targeting IPFxxFileService and IFileTrans services☆28Sep 28, 2025Updated 5 months ago
- a tool to deobfuscate, unminify, and simplify JavaScript code.☆50Dec 17, 2025Updated 3 months ago