wahyuhadi / semgrep-server-rules

Related projects ⓘ

Alternatives and complementary repositories for semgrep-server-rules

• arall / vulnerabilities
  Examples of different vulnerabilities, in a variety of languages, shapes and sizes.
  ☆26Updated 8 months ago
• AdnaneKhan / ActionsCacheBlasting
  Proof-of-concept code for research into GitHub Actions Cache poisoning.
  ☆21Updated 2 months ago
• apapedulimu / Learn-Source-Code-Review
  Learning source code review, spot vulnerability, find some ways how to fix it.
  ☆26Updated last year
• rhamaa / Web-Hacking-Lab
  Lab To Pratice Web Hacking
  ☆25Updated 5 years ago
• GitHubSecurityLab / ruby-unsafe-deserialization
  Proof of Concepts for unsafe deserialization in Ruby
  ☆12Updated 3 weeks ago
• grittyninja / HackToday
  HackToday is annual ctf competition held by Cyber Security IPB
  ☆17Updated 3 years ago
• federicodotta / semgrep-rules
  A collection of my Semgrep rules
  ☆47Updated last year
• farisv / Moodle-CVE-2019-3810
  Moodle (< 3.6.2, < 3.5.4, < 3.4.7, < 3.1.16) XSS PoC for Privilege Escalation (Student to Admin)
  ☆18Updated 3 years ago
• wrvenkat / burp-multistep-csrf-poc
  Burp extension to generate multi-step CSRF POC.
  ☆29Updated 5 years ago
• doyensec / confuser
  Dependency Confusion Security Testing Tool
  ☆39Updated 2 years ago
• BugHunterID / opspack
  Opspack (Open Source Security Package) is a simple package manager for bug bounty/offensive. Using command line interface that can be use…
  ☆11Updated 5 years ago
• iosifache / semgrep-rules-manager
  Manager of third-party sources of Semgrep rules 🗂
  ☆76Updated 3 months ago
• rhamaa / Web-Application-Attack
  Web Application Attack
  ☆14Updated 4 years ago
• airman604 / cms2cmd
  ☆10Updated 5 years ago
• NodyHub / zipslipper
  Create tar/zip archives that try to exploit zipslip vulnerability.
  ☆45Updated last month
• doyensec / CVE-2022-39299_PoC_Generator
  A Simple CVE-2022-39299 PoC exploit generator to bypass authentication in SAML SSO Integrations using vulnerable versions of passport-sam…
  ☆17Updated last year
• dillonfranke / protoburp
  Encode and Fuzz Custom Protobuf Messages in Burp Suite
  ☆30Updated last year
• SonarSource / argument-injection-vectors
  A curated list of argument injection vectors
  ☆37Updated 2 months ago
• TheGrandPew / Sanity
  ☆15Updated 3 years ago
• binareio / FastCVE
  FastCVE - fast, rich and API-based search for CVE and more (CPE, CWE, CAPEC)
  ☆39Updated 2 months ago
• doyensec / oidc-ssrf
  An Evil OIDC Server
  ☆51Updated 2 years ago
• gand3lf / semgrepper
  An extension to use Semgrep inside Burp Suite.
  ☆87Updated last year
• AnubisSec / GroovyWaiter
  ☆17Updated 2 years ago
• JavanXD / Raceocat
  Make exploiting race conditions in web applications highly efficient and ease-of-use.
  ☆22Updated 6 months ago
• defparam / haptyc
  ☆92Updated 3 years ago
• kosmosec / proto-find
  Let's check if your target is vulnerable for client side prototype pollution.
  ☆63Updated 10 months ago
• PortSwigger / web-cache-deception-scanner
  A Burp Extension to test applications for vulnerability to the Web Cache Deception attack
  ☆14Updated 6 years ago
• ahpaleus / MBE
  Modern Binary Exploitation write-ups.
  ☆4Updated 4 years ago
• CoreyD97 / BurpExtenderUtilities
  A collection of utilities to simplify the creation of Burp Suite plugins
  ☆22Updated 10 months ago