gagliardetto / codebox
Generate CodeQL taint-tracking models for Go (along with tests) in a graphical UI
☆20Updated last year
Alternatives and similar repositories for codebox:
Users that are interested in codebox are comparing it to the libraries listed below
- CodeQL model generation for Go.☆17Updated 3 years ago
- Intentionally vulnerable Go web app.☆43Updated 2 months ago
- XSS payloads for edge cases☆34Updated 6 years ago
- ☆28Updated 4 years ago
- ☆34Updated 5 years ago
- Exploiting CVE-2017-7525 demo project with Angular7 frontend and Spring.☆17Updated 6 years ago
- ☆34Updated 2 years ago
- Full TTY reverse shell over SSH☆58Updated 4 years ago
- Collection of python helper API's for interacting with LGTM.com in ways the official API doesn't support.☆23Updated 3 years ago
- Compiled dataset of Java deserialization CVEs☆61Updated 4 years ago
- X41 BeanStack - Stack Trace Fingerprinting BETA☆52Updated 4 years ago
- An example repository that demonstrates how the build custom CodeQL bundles that include query customizations through the `Customizations…☆25Updated 2 years ago
- differer finds how URLs are parsed by different languages in order to help bug hunters break filters☆63Updated 4 years ago
- Custom / Experimental CodeQL queries☆37Updated 3 years ago
- ☆70Updated 7 years ago
- Fuzzing script for redirect URL validator☆50Updated 5 years ago
- My CodeQL queries collection☆96Updated last year
- some codeql rules☆13Updated 5 years ago
- An example project that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions☆122Updated 7 years ago
- YSOSERIAL Integration with burp suite☆40Updated 3 years ago
- A multi-threaded Golang scanner to identify Ruby endpoints vulnerable to CVE-2019-5418☆35Updated 6 years ago
- ☆27Updated 4 years ago
- Repository to hold materials for DefCon_RESTing presentation by Dinis, Abe and Alvaro☆53Updated 11 years ago
- A collection of utilities to simplify the creation of Burp Suite plugins☆22Updated last year
- Exploit PoC for Spring RCE issue (CVE-2011-2894)☆43Updated last year
- CVE-2019-9580 - StackStorm: exploiting CORS misconfiguration (null origin) to gain RCE☆32Updated 6 years ago
- DupeKeyInjector☆135Updated 3 years ago
- 2 web tasks from ZeroNights HackQuest 2016☆50Updated 8 years ago
- Record some Vulnerabilities☆44Updated 2 years ago
- All-in-one plugin for Burp Suite for the detection and the exploitation of Java deserialization vulnerabilities☆27Updated 3 years ago