columbia / quackLinks
Protect your PHP project from deserialization attacks! As seen on NDSS 2024
☆14Updated 2 months ago
Alternatives and similar repositories for quack
Users that are interested in quack are comparing it to the libraries listed below
Sorting:
- Artifact for ICSE 2023☆49Updated 3 years ago
- ☆16Updated 2 years ago
- YASA is an open-source static program analysis project. Its core innovation lies in a unified intermediate representation called UAST, d…☆147Updated this week
- FUGIO: Automatic Exploit Generation for PHP Object Injection Vulnerabilities☆96Updated last year
- pocs & exploit for CVE-2023-24871 (rce + lpe)☆49Updated last year
- A polyglot static analysis engine for detecting vulnerabilities in scripting languages native extensions based on joern.☆18Updated last month
- Chrome Renderer 1day RCE via Type Confusion in Async Stack Trace (v8ctf submission)☆83Updated last year
- AutoSpear☆67Updated last year
- A framework for identifying vulnerabilities in VS Code extensions☆18Updated last year
- Testability Pattern Catalogs for SAST☆31Updated 8 months ago
- Soot-based taint analysis with internal Java fluent interface for security specifications in fluentTQL implemented with MagpieBridge to s…☆18Updated 8 months ago
- ☆80Updated 2 months ago
- ☆35Updated 6 months ago
- Testability Tarpits: the Impact of Code Patterns on the Security Testing of Web Applications (NDSS 2022)☆25Updated last year
- Code audit (code review) with VIM.☆17Updated 9 months ago
- Exploit PoC for CVE-2022-29968 by Joseph Ravichandran and Michael Wang☆20Updated 3 years ago
- A set of Code-ql/Joern queries to find vulnerabilities☆64Updated 4 years ago
- ☆41Updated last year
- ConfFuzz - Fuzzing for Interface Vulnerabilities☆46Updated 2 years ago
- ☆27Updated last year
- Collect public CTF source code repo☆48Updated 4 years ago
- This project runs a Model Context Protocol (MCP) server that wraps the CodeQL query server. It enables tools like [Cursor](https://cursor…☆118Updated 6 months ago
- [NDSS 2024] ReqsMiner is an innovative fuzzing framework developed to discover previously unexamined inconsistencies in CDN forwarding re…☆23Updated last year
- ☆23Updated last year
- Simple WebSocket fuzzer☆32Updated 2 years ago
- Papers on concurrency vulnerability analysis, including multithreaded programs, multi-tasking programs and interrupt driven programs.☆13Updated 2 years ago
- Effective ReDoS Detection by Principled Vulnerability Modeling and Exploit Generation☆14Updated 3 months ago
- SAST + LLM Interprocedural Context Extractor☆118Updated 2 months ago
- The source code (including datasets) of V1SCAN (USENIX Security 2023; will be uploaded).☆41Updated last year
- This repository contain recurring IoT vulnerabilities found by FirmRec.☆15Updated 2 years ago