doyensec / Unsafe-UnpackingLinks
Unsafe Unpacking Vulnerability: Lab Code, Semgrep Rules and Secure Implementation Guide
☆41Updated 6 months ago
Alternatives and similar repositories for Unsafe-Unpacking
Users that are interested in Unsafe-Unpacking are comparing it to the libraries listed below
Sorting:
- A web server designed to shut off on command to exploit DNS rebinding in Chromium-based browsers☆12Updated 2 years ago
- Simple WebSocket fuzzer☆33Updated 2 years ago
- Encode and Fuzz Custom Protobuf Messages in Burp Suite☆32Updated 3 months ago
- Proof of Concepts for unsafe deserialization in Ruby☆16Updated 8 months ago
- ☆23Updated 4 months ago
- A collection of Semgrep rules which followed security guidelines for .NET and Java.☆23Updated 3 years ago
- ☆33Updated 2 years ago
- A collection of my Semgrep rules☆49Updated last year
- A curated list of argument injection vectors☆41Updated 5 months ago
- ☆19Updated 3 months ago
- Utility for creating ZipSlip archives☆73Updated 2 years ago
- A collection of utilities for building extensions using Burp's Montoya API☆50Updated last year
- Guided Differential Fuzzing for HTTP Request Parsing Discrepancies☆17Updated last year
- ☆14Updated 3 weeks ago
- Manager of third-party sources of Semgrep rules 🗂☆87Updated 11 months ago
- An extension to use Semgrep inside Burp Suite.☆89Updated last month
- ☆21Updated last month
- TheThing: an open-source tool to detect DOM Clobbering vulnerabilities☆50Updated last year
- This repository offers insights and a proof-of-concept tool to exploit two significant deserialization vulnerabilities in Inductive Autom…☆45Updated last year
- A simple mutator engine which focuses on finding unknown classes of injection vulnerabilities☆67Updated last year
- Argument Injection in Dragonfly Ruby Gem☆16Updated 4 years ago
- Proof-of-concept code for research into GitHub Actions Cache poisoning.☆21Updated 3 months ago
- TheHulk is a dynamic analysis tool designed to detect and exploit DOM Clobbering vulnerabilities.☆29Updated last month
- ☆26Updated last year
- Searcher for cross-site leaks (XS-Leaks)☆82Updated 2 years ago
- A powerful AWS Cognito analysis and session hijacking toolkit designed for security researchers and penetration testers. CognitoHunter sp…☆20Updated 5 months ago
- Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.☆63Updated last year
- HTTP request smuggling attack helper/CLI tools to manipulate HTTP packets☆36Updated 2 years ago
- A Simple CVE-2022-39299 PoC exploit generator to bypass authentication in SAML SSO Integrations using vulnerable versions of passport-sam…☆19Updated 2 years ago
- Additional active scan checks for BURP☆27Updated 8 months ago