kee1ongz / MiniCATLinks
Mini-program Cross Page Request Forgery (MiniCPRF) Analysis Tool.
☆17Updated 11 months ago
Alternatives and similar repositories for MiniCAT
Users that are interested in MiniCAT are comparing it to the libraries listed below
Sorting:
- Detecting Flow of Sensitive Data in Mini-Programs with Static Taint Analysis☆78Updated last year
- Auto-generated CodeQL rules for matching CVE vulnerabilities and variants.☆181Updated last year
- A keyword based crawler for WeChat Mini-apps☆49Updated 4 years ago
- A data pool-aware static analyzer to detect cross-layer threats in Android apps.☆12Updated last year
- MiniTracker: Large-Scale Sensitive Information Tracking in Mini Apps.☆31Updated 10 months ago
- 本项目主要是对Android安全文章阅读的笔记收集整理,帮助硕博和从业人员快速阅读论文☆37Updated 2 years ago
- Some test samples for CPG execution logic.☆20Updated last year
- IDA Hexrays To Joern☆42Updated 11 months ago
- FuzzCache: Optimizing Web Application Fuzzing Through Software-Based Data Cache (ACM CCS 2024)☆17Updated 11 months ago
- A semantic-based tool to detect credential leakage in mini-apps.☆13Updated last year
- This is the repository for the paper "Cross Miniapp Request Forgery"☆20Updated 2 years ago
- Effective ReDoS Detection by Principled Vulnerability Modeling and Exploit Generation☆14Updated 3 months ago
- Corax for Java: A general static analysis framework for java code checking.☆253Updated 10 months ago
- Taint analysis implementation based on Heros and Soot☆45Updated last year
- ☆21Updated last month
- A Static Dataflow Analysis Framework for iOS Applications.☆47Updated last year
- 零基础入门V8引擎漏洞挖掘☆279Updated last year
- ☆29Updated 2 years ago
- IDA Hexrays To CodeQL☆49Updated 11 months ago
- ☆29Updated 3 years ago
- 网络安全 LLM 智能体应用教程☆29Updated 7 months ago
- Atropos: Effective Fuzzing of Web Applications for Server-Side Vulnerabilities☆72Updated last year
- YASA is an open-source static program analysis project. Its core innovation lies in a unified intermediate representation called UAST, d…☆147Updated this week
- ☆27Updated last year
- A structure-aware grey box fuzzer based on modeling the input processing logic.☆171Updated last year
- ☆144Updated last month
- A search-based Android static analysis tool with much better performance than Amandroid and FlowDroid☆50Updated 4 years ago
- This is the project for the paper “Large-scale Security Measurements on the Android Firmware Ecosystem” in ICSE2022☆37Updated 10 months ago
- A benchmark for Java gadget chain detecting algorithms.☆12Updated 4 months ago
- This project runs a Model Context Protocol (MCP) server that wraps the CodeQL query server. It enables tools like [Cursor](https://cursor…☆118Updated 6 months ago