Veracode Research's repositories
rogue-jndi
A malicious LDAP server for JNDI injection attacks
solr-injection
Apache Solr Injection Research
spring-view-manipulation
When MVC magic turns black
actuator-testbed
A vulnerable application exposing Spring Boot Actuators
svrwb-fuzz-benchmark-suite
Single version, Real World (Dead) Bug Fuzzer Benchmark Suite (Work-in-Progress)
freebsd-perf-fuzz
FreeBSD port of the perf-fuzz OS optimized fuzzer
jClassViewer
A command line utility which examines all specified classes and their members from java binary archive files
logging-formatter-anticrlf
Python logging Formatter for CRLF Injection (CWE-93 / CWE-117) prevention
python3-class-viewer
A command line utility which examines all classes and their members for specified module
contributions
Document external code/content contributions made by Veracode Research
fuzzer-research
Various research related to fuzzers and fuzzing
python-veralint
A collection of PyLint checkers for security issues