5 مستودعات
General security practices for XML document parsing.
Distinguishing note: Broader than XXE prevention, covering general XML security.
Explore 5 awesome GitHub repositories matching security & cryptography · XML Processing Security. Refine with filters or upvote what's useful.
The OWASP Cheat Sheet Series is a comprehensive, community-driven repository of concise security best practices and defensive coding patterns. It serves as a centralized knowledge base for developers and security professionals, providing actionable guidance to secure applications across the entire software development lifecycle. The project covers a vast array of security domains, ranging from fundamental web application hardening and authentication protocols to specialized controls for modern infrastructure and artificial intelligence systems. What distinguishes this project is its decentral
Validates and sanitizes XML data to prevent common vulnerabilities associated with document parsing.
This repository is a comprehensive collection of reference implementations and sample libraries for the Universal Windows Platform. It provides practical examples of how to use Windows Runtime APIs to build cross-device applications, including detailed guidance on XAML-based declarative user interfaces and DirectX-integrated rendering. The project distinguishes itself by providing a wide array of hardware integration suites, covering low-level communication with USB, Serial, I2C, SPI, and GPIO peripherals. It includes specialized implementations for mixed reality holographic rendering, advanc
Provides secure XML parsing by preventing DTD usage and controlling external references to protect against exhaustion.
ModSecurity is an open-source web application firewall and security engine. It functions as an HTTP traffic inspector and intrusion detection system that filters incoming web requests and responses against a set of security rules to block threats and prevent attacks on web servers. The project provides a modular framework for implementing restrictive security policies and custom filtering logic. It identifies and blocks common injection attacks, such as cross-site scripting and SQL injection, while hardening web applications to reduce their overall attack surface. Its broader capabilities in
Analyzes XML content in HTTP bodies to detect vulnerabilities and policy violations.
xmltodict هي مكتبة Python توفر تسلسلاً ثنائي الاتجاه بين مستندات XML والقواميس (dictionaries). تعمل كمحلل (parser) يحول المدخلات المرمزة إلى أزواج مفتاح-قيمة، وأداة تسلسل تحول القواميس مرة أخرى إلى مستندات XML مهيكلة. يتضمن المشروع معالج تدفق تزايدي يستخدم استدعاءات تعتمد على العمق للتعامل مع ملفات XML الكبيرة مع الحفاظ على استهلاك ثابت للذاكرة. يتميز بمدير مساحات أسماء (namespace manager) لتعيين البادئات والإعلانات، بالإضافة إلى مطهر أمني (security sanitizer) يحظر توسيع الكيانات الخارجية ويتحقق من صحة أسماء العناصر لمنع هجمات الحقن. توفر المكتبة إمكانيات لفرض أنواع البيانات، مثل إجبار عناصر معينة على أن تُمثل كقوائم بغض النظر عن عدد العناصر الفرعية. كما تدعم معالجة البيانات اللاحقة من خلال استدعاءات يحددها المستخدم، وتوفر عناصر تحكم قابلة للتكوين لتوسيع أو طي أو تخطي مساحات الأسماء أثناء عملية التحويل.
Implements security measures including external entity blocking and element name validation to prevent XML injection attacks.
This project is a multi-protocol API simulation and mocking system designed to replace external dependencies during development and testing. It provides an API mocking server, a network traffic proxy, and specialized simulators for language model services and identity providers. The system distinguishes itself through deep AI simulation capabilities, including the emulation of language model providers and Model Context Protocol servers using JSON-RPC 2.0. It supports multi-turn conversational logic, state tracking for AI chat APIs, and the visualization of agent execution through call graphs
Handles XML requests containing external entity declarations to test application processing of complex structures.