enferas / TestabilityTarpitsLinks
Testability Tarpits: the Impact of Code Patterns on the Security Testing of Web Applications (NDSS 2022)
☆25Updated last year
Alternatives and similar repositories for TestabilityTarpits
Users that are interested in TestabilityTarpits are comparing it to the libraries listed below
Sorting:
- Soot-based taint analysis with internal Java fluent interface for security specifications in fluentTQL implemented with MagpieBridge to s…☆18Updated 4 months ago
- ☆10Updated last year
- Parser utility to generate ASTs from PHP source code suitable to be processed by Joern.☆36Updated 5 years ago
- Testability Pattern Catalogs for SAST☆31Updated 4 months ago
- ☆39Updated 2 years ago
- A benchmark to evaluate taint analysis☆30Updated 3 years ago
- ObjLupAnsys is a tool to detect prototype pollution vulnerabilities in Node.js packages. This project is written in Python and JavaScript…☆24Updated 3 years ago
- A set of Code-ql/Joern queries to find vulnerabilities☆60Updated 4 years ago
- ☆26Updated last year
- Parser utility to generate ASTs from PHP source code suitable to be processed by Joern.☆17Updated 6 years ago
- ☆25Updated 2 years ago
- ☆16Updated 3 years ago
- Effective ReDoS Detection by Principled Vulnerability Modeling and Exploit Generation☆13Updated 3 weeks ago
- A grey-box web application Fuzzer☆23Updated 10 months ago
- ☆29Updated last month
- Detecting Flow of Sensitive Data in Mini-Programs with Static Taint Analysis☆75Updated last year
- Taint analysis implementation based on Heros and Soot☆45Updated last year
- FuzzCache: Optimizing Web Application Fuzzing Through Software-Based Data Cache (ACM CCS 2024)☆11Updated 7 months ago
- Artifact for ICSE 2023☆49Updated 2 years ago
- ☆25Updated 3 years ago
- A curated list of audit rules which extract from Source Code Auditing tools.☆14Updated 5 years ago
- This project runs a Model Context Protocol (MCP) server that wraps the CodeQL query server. It enables tools like [Cursor](https://cursor…☆91Updated 2 months ago
- Binary rewriting approach with fork server support to fuzz Java applications with afl-fuzz.☆91Updated 7 years ago
- COVA - A static analysis tool to compute path conditions☆36Updated 2 weeks ago
- ☆48Updated 2 years ago
- Taint Analysis for PHP☆45Updated 9 years ago
- ☆11Updated 6 years ago
- ☆16Updated 2 years ago
- Atropos: Effective Fuzzing of Web Applications for Server-Side Vulnerabilities☆70Updated 10 months ago
- Assisting Static Analysis with Large Language Models: A ChatGPT Experiment☆34Updated last year