Testability Tarpits: the Impact of Code Patterns on the Security Testing of Web Applications (NDSS 2022)
☆27Feb 14, 2024Updated 2 years ago
Alternatives and similar repositories for TestabilityTarpits
Users that are interested in TestabilityTarpits are comparing it to the libraries listed below
Sorting:
- Testability Pattern Catalogs for SAST☆32Feb 18, 2025Updated last year
- ☆31May 1, 2025Updated 10 months ago
- OWASP WAP - Web Application Protection Project☆11Jul 24, 2019Updated 6 years ago
- Atropos: Effective Fuzzing of Web Applications for Server-Side Vulnerabilities☆76Aug 15, 2024Updated last year
- ☆19Feb 1, 2016Updated 10 years ago
- A Cross-Language Dynamic Information Flow Analysis.☆28Nov 29, 2022Updated 3 years ago
- ☆11Sep 7, 2023Updated 2 years ago
- TP-Framework: Testability Pattern Framework for SAST☆15May 10, 2024Updated last year
- A benchmark for Java gadget chain detecting algorithms.☆15Jun 20, 2025Updated 8 months ago
- FUGIO: Automatic Exploit Generation for PHP Object Injection Vulnerabilities☆98Nov 27, 2023Updated 2 years ago
- ☆10May 17, 2023Updated 2 years ago
- ☆13Mar 22, 2024Updated last year
- Chat4GPT Experiments for Security☆11Mar 27, 2023Updated 2 years ago
- ☆16Nov 24, 2023Updated 2 years ago
- A polyglot static analysis engine for detecting vulnerabilities in scripting languages native extensions based on joern.☆21Sep 1, 2025Updated 6 months ago
- ☆20Jan 19, 2026Updated last month
- Holistic Concolic Execution for Dynamic Web Applications via Symbolic Interpreter Analysis (IEEE S&P 2024)☆13Oct 3, 2024Updated last year
- Effective ReDoS Detection by Principled Vulnerability Modeling and Exploit Generation☆14Jul 24, 2025Updated 7 months ago
- Code audit (code review) with VIM.☆17Jan 3, 2025Updated last year
- Jess is short for Joern extended by Semantic Slicing. This tool allows you to import C code into a Code Property Graph, and then compute …☆17May 22, 2024Updated last year
- ☆14Feb 4, 2020Updated 6 years ago
- Protect your PHP project from deserialization attacks! As seen on NDSS 2024☆15Aug 8, 2025Updated 6 months ago
- The Z3-Noodler String Solver☆25Feb 21, 2026Updated last week
- The repo of "BugLens"☆35Nov 12, 2025Updated 3 months ago
- Parser utility to generate ASTs from PHP source code suitable to be processed by Joern.☆37Apr 21, 2020Updated 5 years ago
- ☆18May 14, 2025Updated 9 months ago
- Soot-based taint analysis with internal Java fluent interface for security specifications in fluentTQL implemented with MagpieBridge to s…☆18Jan 30, 2025Updated last year
- ☆16Dec 22, 2019Updated 6 years ago
- Indexing reachability for context-sensitive data flow analysis.☆12Jul 10, 2022Updated 3 years ago
- COVA - A static analysis tool to compute path conditions☆40Jul 12, 2025Updated 7 months ago
- ODGen is a JavaScript Static Analysis tool to detect multiple types of vulnerabilities in Node.js packages.☆165Jan 29, 2024Updated 2 years ago
- An SMT Solver for string constraints☆48Feb 10, 2026Updated 2 weeks ago
- Parser utility to generate ASTs from PHP source code suitable to be processed by Joern.☆15Jan 27, 2019Updated 7 years ago
- ☆23Apr 6, 2019Updated 6 years ago
- HiddenCPG: Large-Scale Vulnerable Clone Detection Using Subgraph Isomorphism of Code Property Graphs☆43Oct 18, 2022Updated 3 years ago
- CLI tool for tracking dependents repositories and sorting result by Stars ⭐☆43Jan 25, 2024Updated 2 years ago
- [ICLR 2025] Official implementation for "StringLLM: Understanding the String Processing Capability of Large Language Models"☆22Jan 23, 2025Updated last year
- ☆29Updated this week
- 用来将Tai-e改造为开箱即用的静态代码安全分析框架的一些demo☆37Apr 17, 2024Updated last year