Alternatives and similar repositories for quack

Users that are interested in quack are comparing it to the libraries listed below

• GCMiner / GCMiner
  Artifact for ICSE 2023
  ☆50Updated 3 years ago
• seclab-fudan / TEFuzz
  ☆16Updated 2 years ago
• s3c2 / UntrustIDE
  A framework for identifying vulnerabilities in VS Code extensions
  ☆18Updated last year
• VainlyStrain / charon
  A polyglot static analysis engine for detecting vulnerabilities in scripting languages native extensions based on joern.
  ☆18Updated 2 months ago
• WSP-LAB / FUGIO
  FUGIO: Automatic Exploit Generation for PHP Object Injection Vulnerabilities
  ☆96Updated last year
• testable-eu / sast-testability-patterns
  Testability Pattern Catalogs for SAST
  ☆31Updated 8 months ago
• bahruzjabiyev / frameshifter
  Grammar-based HTTP/2 fuzzer with mutation ability
  ☆47Updated 3 years ago
• antgroup / YASA-Engine
  YASA is an open-source static program analysis project. Its core innovation lies in a unified intermediate representation called UAST, d…
  ☆167Updated this week
• ZeddYu / Public-CTF
  Collect public CTF source code repo
  ☆48Updated 4 years ago
• elManto / StaticAnalysisQueries
  A set of Code-ql/Joern queries to find vulnerabilities
  ☆65Updated 4 years ago
• u21h2 / AutoSpear
  AutoSpear
  ☆68Updated last year
• enferas / TestabilityTarpits
  Testability Tarpits: the Impact of Code Patterns on the Security Testing of Web Applications (NDSS 2022)
  ☆25Updated last year
• NUS-Curiosity / VulZoo
  VulZoo: A Comprehensive Vulnerability Intelligence Dataset | ASE 2024 Demo
  ☆65Updated 7 months ago
• WOOSEUNGHOON / V1SCAN-public
  The source code (including datasets) of V1SCAN (USENIX Security 2023; will be uploaded).
  ☆41Updated 2 years ago
• CISPA-SysSec / atropos-legacy
  Atropos: Effective Fuzzing of Web Applications for Server-Side Vulnerabilities
  ☆72Updated last year
• GitHubSecurityLab / codeql-zero-to-hero
  CodeQL zero to hero blog post series challenges
  ☆154Updated last month
• secure-software-engineering / secucheck
  Soot-based taint analysis with internal Java fluent interface for security specifications in fluentTQL implemented with MagpieBridge to s…
  ☆18Updated 9 months ago
• kaist-hacking / CVE-2023-6702
  Chrome Renderer 1day RCE via Type Confusion in Async Stack Trace (v8ctf submission)
  ☆83Updated last year
• NUS-Curiosity / KernJC
  KernJC: Automated Vulnerable Environment Generation for Linux Kernel Vulnerabilities | 🏆 Best Practical Paper Award of RAID 2024
  ☆75Updated last month
• conffuzz / conffuzz
  ConfFuzz - Fuzzing for Interface Vulnerabilities
  ☆47Updated 2 years ago
• Broken-Assumptions / EDEFuzz
  ☆24Updated 7 months ago
• software-engineering-and-security / Gleipner
  A benchmark for Java gadget chain detecting algorithms.
  ☆13Updated 4 months ago
• lcatro / cve_diff_checker
  快速对自己项目中引入的第三方开源库进行1day patch检索,patch数据每天晚上11点更新
  ☆20Updated 3 years ago
• JordyZomer / codeql-mcp
  This project runs a Model Context Protocol (MCP) server that wraps the CodeQL query server. It enables tools like [Cursor](https://cursor…
  ☆119Updated 7 months ago
• ynwarcs / CVE-2023-24871
  pocs & exploit for CVE-2023-24871 (rce + lpe)
  ☆50Updated last year
• KTH-LangSec / silent-spring
  Silent Spring: Prototype Pollution Leads to Remote Code Execution in Node.js
  ☆74Updated last year
• Konano / ReqsMiner
  [NDSS 2024] ReqsMiner is an innovative fuzzing framework developed to discover previously unexamined inconsistencies in CDN forwarding re…
  ☆23Updated last year
• scipag / websocket_fuzzer
  Simple WebSocket fuzzer
  ☆32Updated 2 years ago
• sfncat / mcp-joern
  A simple Joern MCP Server.
  ☆25Updated 2 months ago
• sefcom / Witcher
  Witcher is the first framework for using AFL to fuzz web applications.
  ☆102Updated last year