trailofbits / testing-handbook

Related projects: ⓘ

• iosifache / semgrep-rules-manager
  Manager of third-party sources of Semgrep rules 🗂
  ☆74Updated last month
• Cybergenik / hopper
  Coverage-Guided Greybox Distributed Fuzzer
  ☆127Updated last month
• chris-anley / cq
  CQ, a code security scanner
  ☆97Updated 4 months ago
• kudelskisecurity / fuzzomatic
  Automatically fuzz Rust projects from scratch
  ☆52Updated 4 months ago
• elttam / rsu-cracker
  ☆31Updated last year
• isosceles-security / common-corpus
  Common Corpus is used to build coverage-minimized corpus data sets for fuzzing.
  ☆23Updated last year
• security-prince / Browser-Security-Research
  Resources for Browser Security Research
  ☆21Updated 2 years ago
• nccgroup / manim-cranim
  Toolkit for creating cryptographic figures and videos.
  ☆27Updated 4 months ago
• MegaManSec / Squid-Security-Audit
  A detailed repository of vulnerabilities that I discovered in The Squid Caching Proxy.
  ☆20Updated 3 months ago
• mdowd79 / presentations
  ☆75Updated 3 months ago
• GoSecure / advanced-binary-analysis
  Materials for the Binary Analysis Workshop presented at NorthSec 2020
  ☆63Updated 3 years ago
• nccgroup / cq
  ☆115Updated last year
• google / protobuf-extensibility-for-burp
  ☆81Updated 2 months ago
• SonarSource / argument-injection-vectors
  A curated list of argument injection vectors
  ☆37Updated 3 weeks ago
• doyensec / PESD-Exporter-Extension
  PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams
  ☆95Updated 7 months ago
• nullenc0de / ChromeAudit
  Nuclei plugins to audit Chrome extensions
  ☆64Updated 2 months ago
• CounterHack / mandrake
  A rust utility for instrumenting binaries, used in Holiday Hack Challenge 2021
  ☆26Updated 2 years ago
• Orange-OpenSource / decret
  DEbian Cve REproducer Tool
  ☆22Updated 11 months ago
• purs3lab / Argus
  ☆41Updated 2 months ago
• 0xbigshaq / redis-afl
  An automated setup for fuzzing Redis w/ AFL++
  ☆26Updated 2 years ago
• ariary / cfuzz
  Command line fuzzer and bruteforcer 🌪 wfuzz for command
  ☆85Updated 2 years ago
• akabe1 / akabe1-semgrep-rules
  My collection of Semgrep rules for vulnerability detection on source code (swift, java)
  ☆30Updated 6 months ago
• trailofbits / codeql-queries
  CodeQL queries developed by Trail of Bits
  ☆72Updated 3 weeks ago
• RefactorSecurity / vscode-security-notes
  Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝
  ☆127Updated last year
• TNO-S3 / WuppieFuzz
  A coverage-guided REST API fuzzer developed on top of LibAFL
  ☆67Updated this week
• VulnerabilityResearchCentre / patch-diffing-in-the-dark
  Leveraging patch diffing to discover new vulnerabilities
  ☆101Updated last year
• AppThreat / atom
  Atom is a novel intermediate representation for applications and a standalone tool that is powered by chen.
  ☆46Updated 2 weeks ago
• psifertex / ctf-vs-the-real-world
  Informational Repository tracking times that real world bugs have come out of CTF challenges intentionally or otherwise
  ☆55Updated last year
• cve-north-stars / cve-north-stars.github.io
  Leveraging CVEs as North Stars in vulnerability discovery and comprehension.
  ☆55Updated 5 months ago
• gand3lf / semgrepper
  An extension to use Semgrep inside Burp Suite.
  ☆86Updated last year