Romain Gaucher's repositories
runtime-tracer
Dynamic tracing for binary applications (using PIN), IDA plugin to visualize and interact with the traces
apache-scalp
Scalp! is a log analyzer for the Apache web server that aims to look for security problems
blacksheep
defunct web browser for pen-testing
java-runtime-tracer
JVMTI agent, following the same pattern as the runtime-tracer
sql-proc-analysis
Quick'n'dirty T-SQL procedure static analysis (don't be fooled, there is no inter-procedural static analysis engine behind, and it only follows assignments...)
Damn_Vulnerable_C_Program
An example C program which contains vulnerable code for common types of vulnerabilities. It can be used to show fuzzing concepts.
difftastic
a structural diff that understands syntax 🟥🟩
f-commons-exec
Apache Commons Exec
fuzzgoat
A vulnerable C program for testing fuzzers.
insecure-coding-examples
Code examples for the talk Secure Coding Practices in C++
s-juice-shop
OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
sei-cert-ccs-samples
SEI CERT C Coding Standard samples
sei-cert-cppcs-samples
SEI CERT C++ Coding Standard samples
tree-sitter
An incremental parsing system for programming tools