OSUSecLab / CMRFScanner
This is the repository for the paper "Cross Miniapp Request Forgery"
☆17Updated last year
Alternatives and similar repositories for CMRFScanner:
Users that are interested in CMRFScanner are comparing it to the libraries listed below
- Detecting Flow of Sensitive Data in Mini-Programs with Static Taint Analysis☆74Updated last year
- CTF中Pwn的快速利用模板(包含awd pwn)☆27Updated 3 years ago
- 用来将Tai-e改造为开箱即用的静态代码安全分析框架的一些demo☆37Updated 11 months ago
- S&P2023 Paper☆39Updated 2 years ago
- CodeQL中文资料和常见使用解释。Chinese version of Codeql documents☆9Updated 4 years ago
- ☆107Updated 3 weeks ago
- Auto-generated CodeQL rules for matching CVE vulnerabilities and variants.☆166Updated 6 months ago
- ☆19Updated last year
- ☆32Updated 10 months ago
- Go-sec-code is a project for learning Go vulnerability code.☆37Updated 2 years ago
- 个人整理的Android安全学习笔记☆72Updated 6 years ago
- Collect some security conference topics☆47Updated 8 months ago
- A grey-box web application Fuzzer☆23Updated 7 months ago
- https://ssa.to main page for ssa compiler utils☆36Updated this week
- Low-level RASP: Protecting Applications Implemented in High-level Programming Languages☆59Updated last year
- generate facts from bytecode (source is https://github.com/plast-lab/doop-mirror/tree/master/generators)☆23Updated 4 months ago
- 安全本应纯粹,规避内卷,用一杯咖啡回归安全的乐趣!SEC.CAFE 安全咖啡是一个安全爱好者的服务平台与社区。☆28Updated last month
- 《深入理解DAST动态应用程序安全测试》Dynamic Application Security Testing.☆49Updated 2 years ago
- Path traversal in Ollama with rogue registry server☆40Updated 9 months ago
- Android渗透测试脚本, by Tr0e.☆27Updated 9 months ago
- 《深入理解Semgrep》Finding vulnerabilities with Semgrep.☆47Updated last year
- nativeRasp that can hook native methods☆23Updated last year
- A neo4j procedure for tabby☆120Updated 10 months ago
- 收录go语言编写的项目、框架和组件出现的cve,或者一些相关的利用方式的文章☆38Updated 2 years ago
- This repository is used to provide a reference for CTF dynamic target machine☆14Updated 2 years ago
- Tai-e的Web插件☆22Updated 9 months ago
- Collection of CTF Web challenges I made☆52Updated last year
- GattFuzz 是一款针对BLE Gatt接口的模糊测试工具。☆22Updated last year
- Tai-e学习记录☆16Updated 11 months ago
- A benchmark to evaluate taint analysis☆30Updated 2 years ago