VainlyStrain / charonLinks
A polyglot static analysis engine for detecting vulnerabilities in scripting languages native extensions based on joern.
☆18Updated last month
Alternatives and similar repositories for charon
Users that are interested in charon are comparing it to the libraries listed below
Sorting:
- A set of Code-ql/Joern queries to find vulnerabilities☆64Updated 4 years ago
- Atropos: Effective Fuzzing of Web Applications for Server-Side Vulnerabilities☆73Updated last year
- Artifact for ICSE 2023☆49Updated 3 years ago
- Soot-based taint analysis with internal Java fluent interface for security specifications in fluentTQL implemented with MagpieBridge to s…☆18Updated 8 months ago
- ConfFuzz - Fuzzing for Interface Vulnerabilities☆47Updated 2 years ago
- ☆41Updated last year
- Code audit (code review) with VIM.☆17Updated 9 months ago
- ☆16Updated 2 years ago
- Testability Tarpits: the Impact of Code Patterns on the Security Testing of Web Applications (NDSS 2022)☆25Updated last year
- ☆23Updated 6 years ago
- This project runs a Model Context Protocol (MCP) server that wraps the CodeQL query server. It enables tools like [Cursor](https://cursor…☆116Updated 6 months ago
- A collection of resources and information about CVE-2023-2033☆19Updated 2 years ago
- Plume is a code representation benchmarking library with options to extract the AST from Java bytecode and store the result in various gr…☆75Updated 11 months ago
- The CTF challenges that I made☆18Updated 2 years ago
- Protect your PHP project from deserialization attacks! As seen on NDSS 2024☆13Updated last month
- Binary rewriting approach with fork server support to fuzz Java applications with afl-fuzz.☆90Updated 7 years ago
- Auto-generated CodeQL rules for matching CVE vulnerabilities and variants.☆180Updated last year
- FUGIO: Automatic Exploit Generation for PHP Object Injection Vulnerabilities☆95Updated last year
- COVA - A static analysis tool to compute path conditions☆37Updated 2 months ago
- Effective ReDoS Detection by Principled Vulnerability Modeling and Exploit Generation☆13Updated 2 months ago
- KernJC: Automated Vulnerable Environment Generation for Linux Kernel Vulnerabilities | 🏆 Best Practical Paper Award of RAID 2024☆73Updated 2 months ago
- attachments for forum of RealWorld CTF 3rd☆42Updated 4 years ago
- A CTF fuzz powerd by protobuf.☆14Updated 3 years ago
- A small PoC for the recent RCE found in the Goahead Webserver prior to version 5.1.5.☆22Updated 3 years ago
- ☆32Updated 2 years ago
- IDA Hexrays To Joern☆41Updated 10 months ago
- Some Vulnerability in the some protocol are collected.☆104Updated last year
- ☆65Updated 3 years ago
- IDA Hexrays To CodeQL☆48Updated 10 months ago
- Witcher is the first framework for using AFL to fuzz web applications.☆95Updated last year