Protect your PHP project from deserialization attacks! As seen on NDSS 2024
☆15Aug 8, 2025Updated 6 months ago
Alternatives and similar repositories for quack
Users that are interested in quack are comparing it to the libraries listed below
Sorting:
- A benchmark for Java gadget chain detecting algorithms.☆15Jun 20, 2025Updated 8 months ago
- ☆27Feb 19, 2024Updated 2 years ago
- Bug Hunter/Red Team/Yellow Team/Blue Team/Green Team/Cyan Team/Purple Team/Operations/Security Research Asset Collection & Scanning Platf…☆25Feb 9, 2026Updated 3 weeks ago
- Holistic Concolic Execution for Dynamic Web Applications via Symbolic Interpreter Analysis (IEEE S&P 2024)☆13Oct 3, 2024Updated last year
- Effective ReDoS Detection by Principled Vulnerability Modeling and Exploit Generation☆14Jul 24, 2025Updated 7 months ago
- The Z3-Noodler String Solver☆25Updated this week
- The repo of "BugLens"☆35Nov 12, 2025Updated 3 months ago
- ☆23Apr 6, 2019Updated 6 years ago
- [ICLR 2025] Official implementation for "StringLLM: Understanding the String Processing Capability of Large Language Models"☆22Jan 23, 2025Updated last year
- ☆29Feb 26, 2026Updated last week
- ☆43Jan 30, 2023Updated 3 years ago
- ☆21Apr 30, 2021Updated 4 years ago
- A command-line tool for getting a domain's IPs from multiple name servers.☆22Aug 31, 2014Updated 11 years ago
- ☆61Apr 24, 2023Updated 2 years ago
- ☆35Feb 4, 2026Updated last month
- Artifact for ICSE 2023☆50Sep 24, 2022Updated 3 years ago
- Automated script for obfuscating, rebranding and renaming the Havoc C2 Framework to evade AV/EDR and C2 hunters.☆46Aug 13, 2025Updated 6 months ago
- FUGIO: Automatic Exploit Generation for PHP Object Injection Vulnerabilities☆98Nov 27, 2023Updated 2 years ago
- ☆206Oct 27, 2025Updated 4 months ago
- The source code of [Sec'25] Make Agent Defeat Agent: Automatic Detection of Taint-Style Vulnerabilities in LLM-based Agents☆53Sep 9, 2025Updated 5 months ago
- ☆32May 1, 2025Updated 10 months ago
- Testability Pattern Catalogs for SAST☆32Feb 18, 2025Updated last year
- Atropos: Effective Fuzzing of Web Applications for Server-Side Vulnerabilities☆76Aug 15, 2024Updated last year
- tool of llm-based indirect-call analyzer☆31Feb 18, 2025Updated last year
- Automated black-box REST API testing using graph-based modeling, LLMs, and multi-agent reinforcement learning.☆44Feb 20, 2026Updated 2 weeks ago
- 一个基于LLM的多Agent全流程漏洞挖掘项目,支持PHP、Java、Python、Go、Node.js等多种语言项目环境搭建、漏洞分析、漏洞验证、报告产出。支持多Agent并发高效率完成漏洞挖掘任务,下个版本将会大更新。☆113Jan 30, 2026Updated last month
- 软件工程与形式化方法相关前沿工作阅读与分享☆36Oct 27, 2025Updated 4 months ago
- Generates strings that match a regular expression☆9Dec 16, 2025Updated 2 months ago
- X-SAST 替代Seay的多语言、轻量、快速、代码审计工具 (Python版本)☆125Feb 10, 2026Updated 3 weeks ago
- The ADSyncDump BOF is a port of Dirk-Jan Mollema's adconnectdump.py / ADSyncDecrypt into a Beacon Object File (BOF) with zero dependencie…☆172Sep 3, 2025Updated 6 months ago
- A Micro-benchmarking Framework for Python Type Inference Tools☆38Nov 13, 2025Updated 3 months ago
- Custom / Experimental CodeQL queries☆37Apr 21, 2022Updated 3 years ago
- IDA Hexrays To Joern☆44Nov 7, 2024Updated last year
- Assisting Static Analysis with Large Language Models: A ChatGPT Experiment☆37Aug 17, 2023Updated 2 years ago
- ☆101Feb 5, 2026Updated last month
- Parser utility to generate ASTs from PHP source code suitable to be processed by Joern.☆37Apr 21, 2020Updated 5 years ago
- Clases de Implantación de Sistemas Operativos☆25Feb 26, 2026Updated last week
- INOFFICIAL nfdump with libnfread: library for reading netflow records from nfdump files☆13Jan 28, 2014Updated 12 years ago
- ☆10Apr 30, 2024Updated last year