Alternatives and similar repositories for Checkmarx-Custom-Query-Rules

Users that are interested in Checkmarx-Custom-Query-Rules are comparing it to the libraries listed below

• KTH-LangSec / SerialDetector
  A proof-of-concept tool for detection and exploitation Object Injection Vulnerabilities in .NET applications
  ☆63Updated 4 years ago
• PalindromeLabs / Java-Deserialization-CVEs
  Compiled dataset of Java deserialization CVEs
  ☆62Updated 4 years ago
• aurainfosec / xss_payloads
  XSS payloads for edge cases
  ☆34Updated 6 years ago
• SaneBow / redirect-fuzzer
  Fuzzing script for redirect URL validator
  ☆52Updated 5 years ago
• irsl / jackson-rce-via-spel
  An example project that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions
  ☆124Updated 7 years ago
• Metnew / write-ups
  ☆34Updated 3 years ago
• PortSwigger / json-web-token-attacker
  ☆108Updated 3 years ago
• jas502n / CVE-2019-8451
  Jira未授权SSRF漏洞
  ☆31Updated 5 years ago
• andresriancho / websocket-fuzzer
  HTML5 WebSocket message fuzzer
  ☆146Updated 6 years ago
• dpnishant / ra2-dom-xss-scanner
  Automatically exported from code.google.com/p/ra2-dom-xss-scanner
  ☆29Updated 9 years ago
• raadfhaddad / Insecure-Deserialization
  Insecure Deserialization, PDF and lab
  ☆18Updated 5 years ago
• EdoardoVignati / java-deserialization-of-untrusted-data-poc
  Some PoC (Proof-of-Concept) about vulnerability of java deserialization of untrusted data
  ☆26Updated 4 years ago
• Symbo1 / facebook-bug-bounties
  Hacking Facebook for fun and profit: It’s not that hard, apparently (exclusive)
  ☆62Updated 6 years ago
• vah13 / Oracle-BI-bugs
  ☆34Updated 6 years ago
• TheTwitchy / vulnd_xxe
  A server vulnerable to XXE that can be used to test payloads using the xxer tool.
  ☆26Updated 7 years ago
• jas502n / JWT_Brute
  JWT_Brute
  ☆32Updated 5 years ago
• hvqzao / burp-flow
  Extension providing view with filtering capabilities for both complete and incomplete requests from all burp tools.
  ☆47Updated 4 years ago
• PortSwigger / freddy-deserialization-bug-finder
  ☆43Updated 5 years ago
• mirfansulaiman / CustomHeader
  This Burp Suite extension allows you to customize header with put a new header into HTTP REQUEST BurpSuite (Scanner, Intruder, Repeater, …
  ☆53Updated 2 years ago
• PortSwigger / java-serialized-payloads
  YSOSERIAL Integration with burp suite
  ☆41Updated 3 years ago
• modzero / interestingFileScanner
  Burp extension
  ☆58Updated 7 years ago
• dienuet / crossdomain
  CORS checking
  ☆34Updated 7 years ago
• synacktiv / burp-jq
  Burp extension to filter JSON on the fly with JQ queries in the HTTP message viewer.
  ☆47Updated 4 years ago
• jangelesg / py3webfuzz
  A Python3 module to assist in fuzzing web applications
  ☆57Updated last year
• augustd / burp-suite-software-version-checks
  Burp extension to passively scan for applications revealing software version numbers
  ☆32Updated last year
• jas502n / CVE-2019-16278
  Directory transversal to remote code execution
  ☆69Updated 5 years ago
• mufeedvh / CVE-2019-8449
  CVE-2019-8449 Exploit for Jira v2.1 - v8.3.4
  ☆67Updated 5 years ago
• spaceraccoon / spring-boot-actuator-h2-rce
  Sample Spring Boot App Demonstrating RCE via Exposed env Actuator and H2 Database
  ☆107Updated 5 years ago
• hackvertor / taborator
  A Burp extension to show the Collaborator client in a tab
  ☆24Updated 2 years ago
• nscuro / bradamsa-ng
  Burp Suite extension for Radamsa-powered fuzzing with Intruder
  ☆20Updated 3 years ago