xbow-engineering / validation-benchmarksLinks
XBOW Validation Benchmarks
☆214Updated 2 months ago
Alternatives and similar repositories for validation-benchmarks
Users that are interested in validation-benchmarks are comparing it to the libraries listed below
Sorting:
- ☆199Updated 9 months ago
- Grammar-based HTTP/1 fuzzer with mutation ability☆253Updated 9 months ago
- CodeQL zero to hero blog post series challenges☆138Updated 2 months ago
- Automated web vulnerability scanning with LLM agents☆346Updated 2 months ago
- Learn AI security through a series of vulnerable LLM CTF challenges. No sign ups, no cloud fees, run everything locally on your system.☆297Updated last year
- TheThing: an open-source tool to detect DOM Clobbering vulnerabilities☆51Updated last year
- Black box fuzzer for web applications☆432Updated last month
- A collection of Server-Side Prototype Pollution gadgets and exploits☆205Updated 6 months ago
- Silent Spring: Prototype Pollution Leads to Remote Code Execution in Node.js☆71Updated last year
- How effective are LLMs in identifying and exploiting security vulnerabilities?☆64Updated 5 months ago
- Find authentication (authn) and authorization (authz) security bugs in web application routes.☆274Updated 5 months ago
- MCP for Security: A collection of Model Context Protocol servers for popular security tools like SQLMap, FFUF, NMAP, Masscan and more. In…☆348Updated this week
- A source code static analysis platform for AppSec enthusiasts.☆256Updated 6 months ago
- JAW: A Graph-based Security Analysis Framework for Client-side JavaScript☆111Updated 8 months ago
- MCP Server for Burp☆246Updated 2 months ago
- Collection of community-driven CodeQL query, library and extension packs☆180Updated last week
- PP-finder Help you find gadget for prototype pollution exploitation☆176Updated last year
- jws2pubkey tool☆40Updated 2 months ago
- A smarter web fuzzing tool that combines local LLM models and ffuf to optimize directory and file discovery☆317Updated 9 months ago
- AutoSpear☆66Updated last year
- Code snippets to reproduce MCP tool poisoning attacks.☆177Updated 4 months ago
- This is the data that powers the PortSwigger URL validation bypass cheat sheet.☆51Updated 3 months ago
- A very simple open source implementation of Google's Project Naptime☆165Updated 5 months ago
- Awesome MXSS ??☆52Updated 10 months ago
- A collection of Semgrep rules which followed security guidelines for .NET and Java.☆23Updated 3 years ago
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams☆105Updated 6 months ago
- CTF challenges designed and implemented in machine learning applications☆165Updated 11 months ago
- 🧠 LLMFuzzer - Fuzzing Framework for Large Language Models 🧠 LLMFuzzer is the first open-source fuzzing framework specifically designed …☆307Updated last year
- Guided Differential Fuzzing for HTTP Request Parsing Discrepancies☆18Updated last year
- Manager of third-party sources of Semgrep rules 🗂☆87Updated last year