Alternatives and similar repositories for Checkmarx-Custom-Query-Rules

Users that are interested in Checkmarx-Custom-Query-Rules are comparing it to the libraries listed below

• KTH-LangSec / SerialDetector
  A proof-of-concept tool for detection and exploitation Object Injection Vulnerabilities in .NET applications
  ☆63Updated 4 years ago
• PalindromeLabs / Java-Deserialization-CVEs
  Compiled dataset of Java deserialization CVEs
  ☆60Updated 5 years ago
• EdoardoVignati / java-deserialization-of-untrusted-data-poc
  Some PoC (Proof-of-Concept) about vulnerability of java deserialization of untrusted data
  ☆26Updated 4 years ago
• nscuro / bradamsa-ng
  Burp Suite extension for Radamsa-powered fuzzing with Intruder
  ☆20Updated 3 years ago
• Contrast-Security-OSS / joogle
  A static analysis API for finding deserialization attack gadgets
  ☆38Updated 2 years ago
• peterjson31337 / tetctf2021
  tetctf2020_amf_writeups
  ☆23Updated 4 years ago
• synacktiv / burp-jq
  Burp extension to filter JSON on the fly with JQ queries in the HTTP message viewer.
  ☆48Updated 4 years ago
• aurainfosec / xss_payloads
  XSS payloads for edge cases
  ☆34Updated 6 years ago
• Metnew / write-ups
  ☆34Updated 3 years ago
• mirfansulaiman / CustomHeader
  This Burp Suite extension allows you to customize header with put a new header into HTTP REQUEST BurpSuite (Scanner, Intruder, Repeater, …
  ☆53Updated 2 years ago
• orangetw / JNDI-Injection-Bypass
  Some payloads of JNDI Injection in JDK 1.8.0_191+
  ☆10Updated 5 years ago
• SaneBow / redirect-fuzzer
  Fuzzing script for redirect URL validator
  ☆53Updated 5 years ago
• JLLeitschuh / lgtm_hack_scripts
  Collection of python helper API's for interacting with LGTM.com in ways the official API doesn't support.
  ☆24Updated 3 years ago
• PortSwigger / freddy-deserialization-bug-finder
  ☆43Updated 5 years ago
• jangelesg / py3webfuzz
  A Python3 module to assist in fuzzing web applications
  ☆57Updated last year
• hvqzao / burp-flow
  Extension providing view with filtering capabilities for both complete and incomplete requests from all burp tools.
  ☆47Updated 4 years ago
• ggabarrin / requestify
  Parse a raw HTTP request and generate request code in different languages
  ☆35Updated 5 years ago
• PortSwigger / json-web-token-attacker
  ☆108Updated 3 years ago
• jas502n / CVE-2019-8451
  Jira未授权SSRF漏洞
  ☆31Updated 6 years ago
• hackvertor / taborator
  A Burp extension to show the Collaborator client in a tab
  ☆24Updated 2 years ago
• cnotin / RazorVulnerableApp
  DO NOT USE: this is a vulnerable ASP.NET web app using Razor templating engine. The vulnerability is a Server-Side Template Injection (SS…
  ☆28Updated 5 years ago
• raadfhaddad / Insecure-Deserialization
  Insecure Deserialization, PDF and lab
  ☆18Updated 5 years ago
• 0ang3el / Unsafe-JAX-RS-Burp
  Burp Suite extension for JAX-RS
  ☆65Updated 8 years ago
• kiranreddyrebel / PostMessage_Fuzz_Tool
  #BugBounty #BugBounty Tools #WebDeveloper Tool
  ☆38Updated 5 months ago
• vah13 / Oracle-BI-bugs
  ☆34Updated 6 years ago
• TheTwitchy / vulnd_xxe
  A server vulnerable to XXE that can be used to test payloads using the xxer tool.
  ☆26Updated 7 years ago
• SafeBreach-Labs / HRS
  ☆51Updated 5 years ago
• spaceraccoon / spring-boot-actuator-h2-rce
  Sample Spring Boot App Demonstrating RCE via Exposed env Actuator and H2 Database
  ☆106Updated 5 years ago
• synacktiv / mojarragadget
  ☆15Updated 4 years ago
• irsl / jackson-rce-via-spel
  An example project that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions
  ☆124Updated 7 years ago