xbow-engineering / validation-benchmarksLinks
XBOW Validation Benchmarks
☆246Updated 3 months ago
Alternatives and similar repositories for validation-benchmarks
Users that are interested in validation-benchmarks are comparing it to the libraries listed below
Sorting:
- Automated web vulnerability scanning with LLM agents☆355Updated 3 months ago
- ☆200Updated 11 months ago
- Learn AI security through a series of vulnerable LLM CTF challenges. No sign ups, no cloud fees, run everything locally on your system.☆302Updated last year
- Grammar-based HTTP/1 fuzzer with mutation ability☆255Updated 11 months ago
- CodeQL zero to hero blog post series challenges☆141Updated last week
- Black box fuzzer for web applications☆434Updated 2 months ago
- Silent Spring: Prototype Pollution Leads to Remote Code Execution in Node.js☆73Updated last year
- TheThing: an open-source tool to detect DOM Clobbering vulnerabilities☆51Updated last year
- 🧠 LLMFuzzer - Fuzzing Framework for Large Language Models 🧠 LLMFuzzer is the first open-source fuzzing framework specifically designed …☆316Updated last year
- A source code static analysis platform for AppSec enthusiasts.☆261Updated 7 months ago
- CTF challenges designed and implemented in machine learning applications☆169Updated last year
- A collection of Server-Side Prototype Pollution gadgets and exploits☆207Updated 8 months ago
- Find authentication (authn) and authorization (authz) security bugs in web application routes.☆274Updated 3 weeks ago
- MCP Server for Burp☆297Updated 3 months ago
- Collection of community-driven CodeQL query, library and extension packs☆186Updated 3 weeks ago
- MCP for Security: A collection of Model Context Protocol servers for popular security tools like SQLMap, FFUF, NMAP, Masscan and more. In…☆427Updated 3 weeks ago
- Proof of concept code for Datadog Security Labs referenced exploits.☆444Updated last month
- JAW: A Graph-based Security Analysis Framework for Client-side JavaScript☆111Updated 3 weeks ago
- A very simple open source implementation of Google's Project Naptime☆169Updated 6 months ago
- TheHulk is a dynamic analysis tool designed to detect and exploit DOM Clobbering vulnerabilities.☆56Updated last month
- A smarter web fuzzing tool that combines local LLM models and ffuf to optimize directory and file discovery☆320Updated 10 months ago
- Manager of third-party sources of Semgrep rules 🗂☆88Updated last year
- Community reconstruction of the legacy JSON NVD Data Feeds. This project uses and redistributes data from the NVD API but is neither endo…☆179Updated this week
- A collection of Semgrep rules which followed security guidelines for .NET and Java.☆23Updated 4 years ago
- Prototype of Full Agentic Application Security Testing, FAAST = SAST + DAST + LLM agents☆63Updated 5 months ago
- We present MAPTA, a multi-agent system for autonomous web application security assessment that combines large language model orchestratio…☆65Updated last month
- How effective are LLMs in identifying and exploiting security vulnerabilities?☆65Updated 7 months ago
- Awesome MXSS ??☆53Updated last year
- ☆314Updated 2 months ago
- ☆184Updated 11 months ago