asrulhadi / wap
OWASP WAP - Web Application Protection Project
☆11Updated 5 years ago
Alternatives and similar repositories for wap:
Users that are interested in wap are comparing it to the libraries listed below
- Collection of vulnerable and fixed PHP synthetic test cases☆60Updated last year
- Pixy is a scanner static code analysis tools that scans PHP applications for security vulnerabilities.☆140Updated last year
- Symbolic execution inspired PHP application scanner for code-path discovery☆32Updated 5 years ago
- Taint Analysis for PHP☆45Updated 8 years ago
- ☆23Updated 5 years ago
- Parser utility to generate ASTs from PHP source code suitable to be processed by Joern.☆17Updated 6 years ago
- HTML5 WebSocket message fuzzer☆144Updated 6 years ago
- JWT fuzzer☆105Updated 6 years ago
- A PHP static code analyser for potential vulnerabilities☆28Updated 10 years ago
- Deprecated: Please visit https://github.com/github/codeql instead.☆81Updated 2 years ago
- This novel black-box web vulnerability scanner attempts to infer the state machine of the web application.☆19Updated 5 years ago
- PHP Unserialize Check - Burp Scanner Extension☆18Updated 7 years ago
- Parser utility to generate ASTs from PHP source code suitable to be processed by Joern.☆35Updated 4 years ago
- ☆54Updated 6 years ago
- ☆17Updated 6 years ago
- Scripts and auxiliary files for fuzzing PHP's unserialize function☆43Updated 7 years ago
- Fuzzer for PHP internal functions☆31Updated 13 years ago
- Fuzzing Browsers☆310Updated 2 years ago
- An HTTP Response fuzzer to find Vulnerabilities in Security Scanners☆26Updated 9 months ago
- This is the repository for JÄk. I created it as prototype during my masterthesis.☆30Updated 7 years ago
- A Python3 module to assist in fuzzing web applications☆57Updated last year
- An example project that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions☆122Updated 7 years ago
- Result files from various fuzzing runs☆16Updated 3 years ago
- Testability Tarpits: the Impact of Code Patterns on the Security Testing of Web Applications (NDSS 2022)☆25Updated last year
- A collection of my Semgrep rules☆48Updated last year
- ☆123Updated 3 years ago
- CVE-2019-6467 (BIND nxdomain-redirect)☆26Updated 5 years ago
- Duncan - Blind SQL injector skeleton☆56Updated 3 years ago
- Automate repetitive tasks for fuzzing☆125Updated 3 years ago
- Example of passing file descriptors into a container to perform a privilege escalation on the host☆23Updated 4 years ago