xbow-engineering / validation-benchmarksLinks
XBOW Validation Benchmarks
☆92Updated last week
Alternatives and similar repositories for validation-benchmarks
Users that are interested in validation-benchmarks are comparing it to the libraries listed below
Sorting:
- Manager of third-party sources of Semgrep rules 🗂☆86Updated 10 months ago
- ☆194Updated 6 months ago
- A very simple open source implementation of Google's Project Naptime☆150Updated 2 months ago
- A research project to add some brrrrrr to Burp☆169Updated 3 months ago
- A collection of Semgrep rules which followed security guidelines for .NET and Java.☆23Updated 3 years ago
- ☆176Updated 7 months ago
- ☆115Updated last year
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams☆105Updated 4 months ago
- TheThing: an open-source tool to detect DOM Clobbering vulnerabilities☆48Updated last year
- ☆85Updated 11 months ago
- How effective are LLMs in identifying and exploiting security vulnerabilities?☆46Updated 3 months ago
- Learn AI security through a series of vulnerable LLM CTF challenges. No sign ups, no cloud fees, run everything locally on your system.☆286Updated 9 months ago
- A smarter web fuzzing tool that combines local LLM models and ffuf to optimize directory and file discovery☆308Updated 6 months ago
- Grammar-based HTTP/1 fuzzer with mutation ability☆250Updated 7 months ago
- using ML models for red teaming☆43Updated last year
- An experimental project exploring the use of Large Language Models (LLMs) to solve HackTheBox machines autonomously.☆52Updated last month
- Testability Pattern Catalogs for SAST☆30Updated 3 months ago
- Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝☆133Updated 2 months ago
- future-proof vulnerability detection benchmark, based on CVEs in open-source repos☆56Updated this week
- Find authentication (authn) and authorization (authz) security bugs in web application routes.☆261Updated 2 months ago
- Verizon Burp Extensions: AI Suite☆130Updated last month
- A collection of Server-Side Prototype Pollution gadgets and exploits☆189Updated 3 months ago
- Silent Spring: Prototype Pollution Leads to Remote Code Execution in Node.js☆65Updated last year
- A LLM explicitly designed for getting hacked☆149Updated last year
- Resources for Browser Security Research☆38Updated 2 years ago
- PP-finder Help you find gadget for prototype pollution exploitation☆163Updated 9 months ago
- Damn Vulnerable SCA Application☆36Updated last month
- Delving into the Realm of LLM Security: An Exploration of Offensive and Defensive Tools, Unveiling Their Present Capabilities.☆162Updated last year
- A structure-aware HTTP fuzzing library☆213Updated 5 months ago
- atom is a novel intermediate representation for applications and a standalone tool that is powered by chen.☆65Updated this week