columbia / quackLinks
Protect your PHP project from deserialization attacks! As seen on NDSS 2024
☆13Updated last month
Alternatives and similar repositories for quack
Users that are interested in quack are comparing it to the libraries listed below
Sorting:
- Artifact for ICSE 2023☆49Updated 3 years ago
- ☆16Updated 2 years ago
- A polyglot static analysis engine for detecting vulnerabilities in scripting languages native extensions based on joern.☆18Updated last month
- FUGIO: Automatic Exploit Generation for PHP Object Injection Vulnerabilities☆95Updated last year
- A framework for identifying vulnerabilities in VS Code extensions☆18Updated last year
- Testability Pattern Catalogs for SAST☆31Updated 7 months ago
- Testability Tarpits: the Impact of Code Patterns on the Security Testing of Web Applications (NDSS 2022)☆25Updated last year
- A set of Code-ql/Joern queries to find vulnerabilities☆64Updated 4 years ago
- Soot-based taint analysis with internal Java fluent interface for security specifications in fluentTQL implemented with MagpieBridge to s…☆18Updated 8 months ago
- This project runs a Model Context Protocol (MCP) server that wraps the CodeQL query server. It enables tools like [Cursor](https://cursor…☆116Updated 6 months ago
- YASA is an open-source static program analysis project. Its core innovation lies in a unified intermediate representation called UAST, d…☆120Updated last week
- This repository contain recurring IoT vulnerabilities found by FirmRec.☆15Updated 2 years ago
- Atropos: Effective Fuzzing of Web Applications for Server-Side Vulnerabilities☆73Updated last year
- KernJC: Automated Vulnerable Environment Generation for Linux Kernel Vulnerabilities | 🏆 Best Practical Paper Award of RAID 2024☆73Updated 2 months ago
- Collect public CTF source code repo☆47Updated 4 years ago
- ☆19Updated 3 weeks ago
- ConfFuzz - Fuzzing for Interface Vulnerabilities☆47Updated 2 years ago
- AutoSpear☆66Updated last year
- Effective ReDoS Detection by Principled Vulnerability Modeling and Exploit Generation☆13Updated 2 months ago
- Parser utility to generate ASTs from PHP source code suitable to be processed by Joern.☆35Updated 5 years ago
- Code audit (code review) with VIM.☆17Updated 9 months ago
- Chrome Renderer 1day RCE via Type Confusion in Async Stack Trace (v8ctf submission)☆83Updated last year
- CodeQL zero to hero blog post series challenges☆141Updated this week
- The CTF challenges that I made☆18Updated 2 years ago
- Hodor for node.js☆15Updated 2 years ago
- ☆78Updated last month
- Witcher is the first framework for using AFL to fuzz web applications.☆95Updated last year
- Grammar-based HTTP/2 fuzzer with mutation ability☆47Updated 3 years ago
- ☆41Updated last year
- Papers on concurrency vulnerability analysis, including multithreaded programs, multi-tasking programs and interrupt driven programs.☆13Updated 2 years ago