malteskoruppa / phpjoernLinks
Parser utility to generate ASTs from PHP source code suitable to be processed by Joern.
☆36Updated 5 years ago
Alternatives and similar repositories for phpjoern
Users that are interested in phpjoern are comparing it to the libraries listed below
Sorting:
- ☆41Updated 2 years ago
- Testability Tarpits: the Impact of Code Patterns on the Security Testing of Web Applications (NDSS 2022)☆25Updated last year
- ☆10Updated last year
- ☆25Updated 3 years ago
- Parser utility to generate ASTs from PHP source code suitable to be processed by Joern.☆17Updated 6 years ago
- FUGIO: Automatic Exploit Generation for PHP Object Injection Vulnerabilities☆95Updated last year
- ☆51Updated 2 years ago
- ☆27Updated last year
- ObjLupAnsys is a tool to detect prototype pollution vulnerabilities in Node.js packages. This project is written in Python and JavaScript…☆24Updated 3 years ago
- Testability Pattern Catalogs for SAST☆31Updated 6 months ago
- ☆29Updated 3 months ago
- ReDoSHunter: A Combined Static and Dynamic Approach for Regular Expression DoS Detection☆79Updated 2 years ago
- Binary rewriting approach with fork server support to fuzz Java applications with afl-fuzz.☆91Updated 7 years ago
- ☆16Updated 3 years ago
- A benchmark to evaluate taint analysis☆29Updated 3 years ago
- Atropos: Effective Fuzzing of Web Applications for Server-Side Vulnerabilities☆71Updated last year
- Taint Analysis for PHP☆45Updated 9 years ago
- ☆28Updated 3 years ago
- Auto-generated CodeQL rules for matching CVE vulnerabilities and variants.☆179Updated 11 months ago
- Effective ReDoS Detection by Principled Vulnerability Modeling and Exploit Generation☆14Updated last month
- [NDSS 2024] ReqsMiner is an innovative fuzzing framework developed to discover previously unexamined inconsistencies in CDN forwarding re…☆22Updated last year
- Personal CodeQL queries☆64Updated 2 months ago
- Artifact for ICSE 2023☆49Updated 2 years ago
- Taint analysis implementation based on Heros and Soot☆45Updated last year
- ODGen is a JavaScript Static Analysis tool to detect multiple types of vulnerabilities in Node.js packages.☆155Updated last year
- ☆11Updated 6 years ago
- Holistic Concolic Execution for Dynamic Web Applications via Symbolic Interpreter Analysis (IEEE S&P 2024)☆12Updated 10 months ago
- A grey-box web application Fuzzer☆23Updated last year
- Grammar-based HTTP/2 fuzzer with mutation ability☆47Updated 3 years ago
- This project runs a Model Context Protocol (MCP) server that wraps the CodeQL query server. It enables tools like [Cursor](https://cursor…☆105Updated 5 months ago