xbow-engineering / validation-benchmarksLinks
XBOW Validation Benchmarks
☆104Updated this week
Alternatives and similar repositories for validation-benchmarks
Users that are interested in validation-benchmarks are comparing it to the libraries listed below
Sorting:
- ☆196Updated 7 months ago
- A research project to add some brrrrrr to Burp☆178Updated 4 months ago
- Manager of third-party sources of Semgrep rules 🗂☆87Updated 11 months ago
- How effective are LLMs in identifying and exploiting security vulnerabilities?☆51Updated 3 months ago
- A very simple open source implementation of Google's Project Naptime☆155Updated 2 months ago
- TheThing: an open-source tool to detect DOM Clobbering vulnerabilities☆50Updated last year
- A collection of Semgrep rules which followed security guidelines for .NET and Java.☆23Updated 3 years ago
- Prototype of Full Agentic Application Security Testing, FAAST = SAST + DAST + LLM agents☆49Updated last month
- ☆85Updated last year
- Learn AI security through a series of vulnerable LLM CTF challenges. No sign ups, no cloud fees, run everything locally on your system.☆289Updated 10 months ago
- CodeQL zero to hero blog post series challenges☆125Updated 6 months ago
- Delving into the Realm of LLM Security: An Exploration of Offensive and Defensive Tools, Unveiling Their Present Capabilities.☆163Updated last year
- ☆79Updated last month
- Awesome MXSS ??☆52Updated 8 months ago
- ☆177Updated 8 months ago
- Grammar-based HTTP/1 fuzzer with mutation ability☆251Updated 7 months ago
- A collection of Server-Side Prototype Pollution gadgets and exploits☆190Updated 4 months ago
- Silent Spring: Prototype Pollution Leads to Remote Code Execution in Node.js☆68Updated last year
- A smarter web fuzzing tool that combines local LLM models and ffuf to optimize directory and file discovery☆314Updated 6 months ago
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams☆105Updated 4 months ago
- PP-finder Help you find gadget for prototype pollution exploitation☆164Updated 10 months ago
- Find authentication (authn) and authorization (authz) security bugs in web application routes.☆261Updated 3 months ago
- Automated web vulnerability scanning with LLM agents☆328Updated this week
- JAW: A Graph-based Security Analysis Framework for Client-side JavaScript☆107Updated 6 months ago
- A LLM explicitly designed for getting hacked☆152Updated last year
- 🔍A cutting edge context aware GraphQL API fuzzing tool!☆141Updated this week
- ☆115Updated 2 years ago
- ☆65Updated 5 months ago
- 🐛 UCLA ACM Cyber's Fuzzing Lab☆85Updated 5 months ago
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆162Updated 7 months ago