trailofbits / testing-handbookLinks
Trail of Bits Testing Handbook
โ82Updated last week
Alternatives and similar repositories for testing-handbook
Users that are interested in testing-handbook are comparing it to the libraries listed below
Sorting:
- CodeQL queries developed by Trail of Bitsโ130Updated last week
- Manager of third-party sources of Semgrep rules ๐โ89Updated last year
- CQ, a code security scannerโ100Updated last year
- SAST + LLM Interprocedural Context Extractorโ118Updated 2 months ago
- atom is a novel intermediate representation for applications and a standalone tool that is powered by chen.โ72Updated 2 weeks ago
- Resources for Browser Security Researchโ44Updated 3 years ago
- Create notes during a security code review in VSCode ๐ Import your favorite SAST tool findings ๐ ๏ธ and collaborate with others ๐คโ138Updated 2 weeks ago
- Coverage-Guided Greybox Distributed Fuzzerโ132Updated 6 months ago
- ๐A cutting edge context aware GraphQL API fuzzing tool!โ151Updated last month
- โ48Updated last year
- Create code bookmarks and code highlights with a click.โ218Updated 2 months ago
- A coverage-guided REST API fuzzer developed on top of LibAFLโ146Updated last week
- SARIF Explorer: A VSCode extension that helps you visualize and triage static analysis resultsโ38Updated last month
- Automatically fuzz Rust projects from scratchโ58Updated 3 months ago
- A curated list of awesome browser security learning material.โ145Updated 2 years ago
- โ79Updated last year
- ๐งช Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.โ41Updated 10 months ago
- The resources for glibc Malloc heap exploitation course by Maxwell Dulin and Security Innovation.โ165Updated 11 months ago
- A structure-aware HTTP fuzzing libraryโ218Updated 10 months ago
- Data about all known supply-chain attacks through historyโ60Updated 4 months ago
- Semgrep queries developed by Trail of Bits.โ448Updated last month
- โ116Updated 2 years ago
- A very simple open source implementation of Google's Project Naptimeโ170Updated 7 months ago
- ๐ UCLA ACM Cyber's Fuzzing Labโ86Updated this week
- โ151Updated last month
- A collection of Semgrep rules which followed security guidelines for .NET and Java.โ24Updated 4 years ago
- boostsecurityio/lotpโ136Updated this week
- โ116Updated last month
- CFPsec is a client program that retrieves the list of Call For Papers or/and upcoming Hacking/Security Conferences based on cfptime.org wโฆโ94Updated last week
- A curated list of argument injection vectorsโ41Updated 9 months ago