FUGIO: Automatic Exploit Generation for PHP Object Injection Vulnerabilities
☆98Nov 27, 2023Updated 2 years ago
Alternatives and similar repositories for FUGIO
Users that are interested in FUGIO are comparing it to the libraries listed below
Sorting:
- ☆13Mar 19, 2022Updated 4 years ago
- An investigative study on the security and privacy aspects of Progressive Web Apps☆19Oct 14, 2018Updated 7 years ago
- CRash Scope (CRScope) is a ML-guided crash classifier of a given JavaScript engine crash-dump file.☆13Aug 28, 2019Updated 6 years ago
- ☆43Jan 30, 2023Updated 3 years ago
- A penetration testing tool for finding file upload bugs (NDSS 2020)☆253Mar 30, 2021Updated 4 years ago
- Link: Black-Box Detection of Cross-Site Scripting Vulnerabilities Using Reinforcement Learning☆25Apr 28, 2022Updated 3 years ago
- RICC: Robust Collective Classification of Sybil Accounts☆11Jul 12, 2023Updated 2 years ago
- Parser utility to generate ASTs from PHP source code suitable to be processed by Joern.☆37Apr 21, 2020Updated 5 years ago
- Symbolic execution inspired PHP application scanner for code-path discovery☆33May 2, 2019Updated 6 years ago
- ☆242Jan 27, 2019Updated 7 years ago
- Protect your PHP project from deserialization attacks! As seen on NDSS 2024☆15Aug 8, 2025Updated 7 months ago
- Atropos: Effective Fuzzing of Web Applications for Server-Side Vulnerabilities☆75Aug 15, 2024Updated last year
- A collection of JavaScript test suites from JavaScript engine & Test262 repositories.☆22Sep 23, 2020Updated 5 years ago
- ☆11Sep 7, 2023Updated 2 years ago
- experimental wildcard subdomain filtering prototype☆14Aug 5, 2023Updated 2 years ago
- AFL++(2.63c/2.65c) + aflsmart(5ad7ea3)☆11Oct 20, 2020Updated 5 years ago
- Montage: A Neural Network Language Model-Guided JavaScript Engine Fuzzer☆89May 3, 2024Updated last year
- Testability Tarpits: the Impact of Code Patterns on the Security Testing of Web Applications (NDSS 2022)☆27Feb 14, 2024Updated 2 years ago
- Grey-box Concolic Testing on Binary Code (ICSE '19)☆156Oct 4, 2021Updated 4 years ago
- ☆15Mar 19, 2022Updated 4 years ago
- ☆22Sep 28, 2022Updated 3 years ago
- Pickle decompiler plugin for Radare2☆18Aug 6, 2023Updated 2 years ago
- Toy implementation of a Automated Exploit Generation built on Angr; stiched using radare, pwntools, pyelftools, and Angrop.☆16Jan 9, 2022Updated 4 years ago
- ☆30Aug 30, 2022Updated 3 years ago
- Witcher is the first framework for using AFL to fuzz web applications.☆104Nov 28, 2023Updated 2 years ago
- A benchmark for Java gadget chain detecting algorithms.☆15Jun 20, 2025Updated 9 months ago
- ☆22Feb 12, 2022Updated 4 years ago
- A collections of methods to sleep on Windows using common and less-so-common techniques☆13Aug 16, 2024Updated last year
- Automatic Exploit Generation Paper☆88Dec 12, 2021Updated 4 years ago
- Bytecode based Fuzzer for the PHP language☆12Jul 22, 2020Updated 5 years ago
- 📝 Web security related academic papers collection (just for myself).☆25Sep 9, 2021Updated 4 years ago
- ☆64Nov 26, 2021Updated 4 years ago
- ☆11Nov 25, 2020Updated 5 years ago
- ☆26Dec 17, 2021Updated 4 years ago
- ☆18Nov 6, 2024Updated last year
- An Automated Heap Feng Shui Tool☆18Jun 27, 2022Updated 3 years ago
- Testability Pattern Catalogs for SAST☆34Feb 18, 2025Updated last year
- ACSAC 2018 paper: Towards Automated Generation of Exploitation Primitives for Web Browsers☆15Nov 28, 2018Updated 7 years ago
- HiddenCPG: Large-Scale Vulnerable Clone Detection Using Subgraph Isomorphism of Code Property Graphs☆43Oct 18, 2022Updated 3 years ago