ouuan/ZipDiff

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/ouuan/ZipDiff)

ouuan / ZipDiff

[USENIX Security '25] My ZIP isn’t your ZIP: Identifying and Exploiting Semantic Gaps Between ZIP Parsers

☆39

Alternatives and similar repositories for ZipDiff

Users that are interested in ZipDiff are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

LFYSec / AgentFuzz
View on GitHub
The source code of [Sec'25] Make Agent Defeat Agent: Automatic Detection of Taint-Style Vulnerabilities in LLM-based Agents
☆92Apr 13, 2026Updated 2 months ago
secureweb / symphp
View on GitHub
Holistic Concolic Execution for Dynamic Web Applications via Symbolic Interpreter Analysis (IEEE S&P 2024)
☆17Oct 3, 2024Updated last year
Konano / ReqsMiner
View on GitHub
[NDSS 2024] ReqsMiner is an innovative fuzzing framework developed to discover previously unexamined inconsistencies in CDN forwarding re…
☆25Jun 27, 2024Updated 2 years ago
mo-xiaoxi / HDiff
View on GitHub
☆28Jun 7, 2022Updated 4 years ago
EkiXu / WAFManis
View on GitHub
☆161Jun 3, 2024Updated 2 years ago
Deploy to Railway using AI coding agents - Free Credits Offer • Ad
Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
LFYSec / MScan
View on GitHub
The source code of [S&P'25] Detecting Taint-Style Vulnerabilities in Microservice-Structured Web Applications.
☆73Nov 20, 2025Updated 7 months ago
tl2cents / Implementation-of-Cryptographic-Attacks
View on GitHub
Implementation of cryptographic attacks. Mainly reproduction of recent cryptographic papers.
☆15Dec 4, 2024Updated last year
DEVCORE-Wargame / HITCON-2023
View on GitHub
HITCON 2023 x DEVCORE Wargame
☆22Aug 24, 2023Updated 2 years ago
XingTuLab / JSIMPLIFIER
View on GitHub
a tool to deobfuscate, unminify, and simplify JavaScript code.
☆67Dec 17, 2025Updated 6 months ago
aszx87410 / cdnjs-prototype-pollution
View on GitHub
Find all libraries on cdn.js that pollute your prototype
☆19Sep 1, 2022Updated 3 years ago
idekctf / idekctf-2022
View on GitHub
Upload of all challenges from idekCTF 2022
☆25Jan 20, 2023Updated 3 years ago
Mas0nShi / v8-bytecode-interpreter
View on GitHub
A mini bytecode Interpreter for v8.
☆23Nov 14, 2022Updated 3 years ago
CFandR-github / PHP-binary-bugs
View on GitHub
PHP binary bugs advisory
☆178Jul 30, 2022Updated 3 years ago
EkiXu / CTFm
View on GitHub
CTFm
☆27Mar 18, 2023Updated 3 years ago
Deploy on Railway without the complexity - Free Credits Offer • Ad
Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
dicegang / hope-2022-challenges
View on GitHub
All challenges from DiceCTF @ HOPE 2022
☆28Jul 25, 2022Updated 3 years ago
fdu-sec / JDD
View on GitHub
☆210Oct 27, 2025Updated 8 months ago
Ryze-T / rust-addUser
View on GitHub
windows 添加管理员--Rust版本
☆45Jul 7, 2022Updated 3 years ago
wa1ki0g / NoAuth
View on GitHub
java-web 自动化鉴权绕过
☆382Apr 3, 2025Updated last year
m4p1e / PLT-notes
View on GitHub
The notes about programming language theory
☆27May 7, 2023Updated 3 years ago
malteskoruppa / phpjoern
View on GitHub
Parser utility to generate ASTs from PHP source code suitable to be processed by Joern.
☆37Apr 21, 2020Updated 6 years ago
terrynini / FeelingLucky
View on GitHub
試試你的好手氣
☆40Jan 26, 2026Updated 5 months ago
sqlsec / ByteCTF2021-Final-SEO
View on GitHub
字节跳动 CTF 2021 线下决赛的一道 Web 题源码，主要考察 SSRF
☆42Dec 16, 2021Updated 4 years ago
alibaba / seckit
View on GitHub
阿里巴巴安全SDK，提供SSRF、JDBC、XXE防护能力
☆119Oct 15, 2025Updated 8 months ago
Deploy to Railway using AI coding agents - Free Credits Offer • Ad
Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
flowerwind / JspFinder
View on GitHub
一款通过污点追踪发现Jsp webshell的工具(A tool to find Jsp Webshell through stain tracking)
☆175Jan 4, 2022Updated 4 years ago
cispa / StackWarp
View on GitHub
Proof-of-concept for the paper "StackWarp: Breaking AMD SEV-SNP Integrity via Deterministic Stack-Pointer Manipulation through the CPU’s …
☆97Jan 30, 2026Updated 4 months ago
j4k0xb / View8
View on GitHub
View8 - Decompiles serialized V8 objects back into high-level readable code.
☆88Apr 26, 2026Updated 2 months ago
cwkiller / ClassLinefix
View on GitHub
Java bytecode line number restoration tool
☆144Aug 31, 2025Updated 9 months ago
jwang-a / CTF
View on GitHub
☆72Feb 1, 2024Updated 2 years ago
ambionics / wrapwrap
View on GitHub
Generates a `php://filter` chain that adds a prefix and a suffix to the contents of a file.
☆242Oct 8, 2024Updated last year
x-vespiary / writeup
View on GitHub
CTF writeups by ./Vespiary
☆15Nov 12, 2023Updated 2 years ago
SECCON / SECCON2023_final_CTF
View on GitHub
☆12Jan 10, 2024Updated 2 years ago
RogerDTZ / EGO1-Piano
View on GitHub
☆14Aug 4, 2021Updated 4 years ago
Serverless GPU API endpoints on Runpod - Get Bonus Credits • Ad
Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
acsc-org / acsc-challenges-2024-public
View on GitHub
Challenge repository for ACSC 2024
☆13Apr 2, 2024Updated 2 years ago
blackb6a / blackb6a-ctf-2023-challenges
View on GitHub
☆12Mar 10, 2024Updated 2 years ago
doyensec / r2pickledec
View on GitHub
Pickle decompiler plugin for Radare2
☆18Aug 6, 2023Updated 2 years ago
cn-panda / ThymeleafSSTIBypass
View on GitHub
Thymeleaf SSTI Bypass
☆13Nov 24, 2021Updated 4 years ago
masatokinugawa / css-exfiltration-svg-font
View on GitHub
☆18Nov 28, 2021Updated 4 years ago
ShangRui-hash / bucket-takeover-lab
View on GitHub
子域名接管的几种变体靶场
☆22Jun 22, 2024Updated 2 years ago
cwkiller / xxe-smb-server
View on GitHub
在xxe中使用smb外带多行内容
☆111Nov 9, 2025Updated 7 months ago