htrgouvea
htrgouvea
**Context:** During the fuzzing process, many requests are sent, and web applications may have rate-limit controls that block or prevent fuzzing from continuing. Some applications may also behave differently depending...
I have an idea which is to implement a new filter based on the content of the response. The objective of detecting response pages with information leaks, for example. Something...
The integration of unit testing is not merely a best practice but a crucial step toward ensuring the reliability and resilience of our codebase. By conducting targeted tests on individual...
Using an SCA (Software Composition Analysis) is super important for code integrity and application security. There is no SCA present in this repository yet, so I am opening this issue...
It is necessary to add ZARN (github.com/htrgouvea/zarn) as a SAST resource to check for security issues in all codes that are inserted into this repository. Ideally, this is a step...
Hi folks! I believe it would be very interesting if the project had support for SARIF [1]. SARIF is already a strong industry standard and I believe that all the...
Currently, ZARN performs a pseudo analysis of the data flow, it tries to identify the presence of a variable and looks for the possibility of its value being changed by...
Currently ZARN works by searching for the presence of dangerous functions/that may present risks and trying to infer whether they are "reachable" through user input. But there are some categories...
Using an SCA (Software Composition Analysis) is super important for code integrity and application security. There is no SCA present in this repository yet, so I am opening this issue...