google / oss-fuzz-vulns

Related projects ⓘ

Alternatives and complementary repositories for oss-fuzz-vulns

• ossf / fuzz-introspector
  Fuzz Introspector -- introspect, extend and optimise fuzzers
  ☆378Updated this week
• trailofbits / codeql-queries
  CodeQL queries developed by Trail of Bits
  ☆75Updated this week
• cristianstaicu / SecBench.js
  ☆28Updated last month
• facebook / sapp
  Post Processor for Facebook Static Analysis Tools.
  ☆133Updated this week
• GitHubSecurityLab / CodeQL-Community-Packs
  Collection of community-driven CodeQL query, library and extension packs
  ☆74Updated last week
• githubuniverseworkshops / codeql
  CodeQL workshops for GitHub Universe
  ☆91Updated 2 years ago
• testable-eu / sast-testability-patterns
  Testability Pattern Catalogs for SAST
  ☆29Updated 8 months ago
• bahruzjabiyev / frameshifter
  Grammar-based HTTP/2 fuzzer with mutation ability
  ☆42Updated 2 years ago
• GitHubSecurityLab / gh-mrva
  Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)
  ☆49Updated 7 months ago
• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆141Updated 8 months ago
• microsoft / codeql-container
  Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.
  ☆109Updated 11 months ago
• hgarrereyn / GraphFuzz
  GraphFuzz is an experimental framework for building structure-aware, library API fuzzers.
  ☆254Updated 10 months ago
• AppThreat / vulnerability-db
  Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.0, purl, and vers…
  ☆98Updated this week
• bahruzjabiyev / t-reqs
  Grammar-based HTTP/1 fuzzer with mutation ability
  ☆243Updated 3 weeks ago
• github / codeql-dubbo-workshop
  ☆58Updated last year
• quarkslab / pastis
  PASTIS: Collaborative Fuzzing Framework
  ☆157Updated 3 months ago
• GitHubSecurityLab / codeql-zero-to-hero
  CodeQL zero to hero blog post series challenges
  ☆86Updated 3 months ago
• fgsect / FitM
  FitM, the Fuzzer in the Middle, can fuzz client and server binaries at the same time using userspace snapshot-fuzzing and network emulati…
  ☆279Updated 2 years ago
• whitesquirrell / C0deVari4nt
  A variant analysis and visualisation tool that scans codebases for similar vulnerabilities
  ☆69Updated 2 years ago
• SAP / risk-explorer-for-software-supply-chains
  A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…
  ☆71Updated 3 weeks ago
• GCMiner / GCMiner
  Artifact for ICSE 2023
  ☆45Updated 2 years ago
• Marcono1234 / codeql-java-queries
  Personal CodeQL queries
  ☆58Updated last week
• SoheilKhodayari / JAW
  JAW: A Graph-based Security Analysis Framework for Client-side JavaScript
  ☆99Updated last week
• u21h2 / AutoSpear
  AutoSpear
  ☆54Updated 10 months ago
• ForAllSecure / mayhem-examples
  Mayhem example templates for programming languages and fuzzers that you love!
  ☆27Updated 10 months ago
• find-sec-bugs / juliet-test-suite
  A collection of test cases in the Java language. It contains examples for 112 different CWEs.
  ☆52Updated 3 years ago
• CISPA-SysSec / atropos-legacy
  Atropos: Effective Fuzzing of Web Applications for Server-Side Vulnerabilities
  ☆53Updated 3 months ago
• WSP-LAB / FUGIO
  FUGIO: Automatic Exploit Generation for PHP Object Injection Vulnerabilities
  ☆90Updated 11 months ago
• sefcom / Witcher
  Witcher is the first framework for using AFL to fuzz web applications.
  ☆77Updated 11 months ago
• plume-oss / plume
  Plume is a code representation benchmarking library with options to extract the AST from Java bytecode and store the result in various gr…
  ☆70Updated last month