Aurore54F / DoubleX
Statically Detecting Vulnerable Data Flows in Browser Extensions at Scale
☆74Updated 3 years ago
Alternatives and similar repositories for DoubleX:
Users that are interested in DoubleX are comparing it to the libraries listed below
- ☆31Updated 5 months ago
- Static JavaScript Analysis: AST, Control Flow, Data Flow, & Pointer Analysis☆24Updated 3 years ago
- Modular static malicious JavaScript detection system☆69Updated 4 years ago
- Testability Pattern Catalogs for SAST☆29Updated last month
- JAW: A Graph-based Security Analysis Framework for Client-side JavaScript☆105Updated 3 months ago
- ☆44Updated 8 months ago
- Artifacts of the paper "Arcanum: Detecting and Evaluating the Privacy Risks of Browser Extensions on Web Pages and Web Content" in USENIX…☆13Updated 7 months ago
- ☆50Updated 2 years ago
- TaintFlow, a framework for JavaScript dynamic information flow analysis.☆17Updated 2 years ago
- DiAne is a smart fuzzer for IoT devices☆39Updated 11 months ago
- ☆19Updated last year
- Static data flow-based analysis of JavaScript files to detect syntactic clones☆23Updated 4 years ago
- A framework for identifying vulnerabilities in VS Code extensions☆17Updated 8 months ago
- ☆124Updated 10 months ago
- ODGen is a JavaScript Static Analysis tool to detect multiple types of vulnerabilities in Node.js packages.☆153Updated last year
- ☆63Updated last year
- The source code (including datasets) of V1SCAN (USENIX Security 2023; will be uploaded).☆41Updated last year
- VFCFinder: Searching for the Missing Vulnerability Fixing Commits☆26Updated last year
- Vulnerable Source Code Collected from Open Source Repositories for Dataset Generation☆13Updated 4 years ago
- Automatically fuzz Rust projects from scratch☆55Updated 10 months ago
- HiddenCPG: Large-Scale Vulnerable Clone Detection Using Subgraph Isomorphism of Code Property Graphs☆42Updated 2 years ago
- Performant taint analysis for Node.js☆49Updated 7 months ago
- PASTIS: Collaborative Fuzzing Framework☆162Updated 7 months ago
- ☆26Updated last year
- CodeQL queries developed by Trail of Bits☆89Updated 3 months ago
- A browser fuzzer augmented by API mod-ref relations☆31Updated last year
- MINER provided by the paper "MINER: A Hybrid Data-Driven Approach for REST API Fuzzing"☆39Updated 2 years ago
- ☆26Updated last year
- No description yet☆11Updated last year
- find relevant security papers published in the top-4 conferences (S&P, USENIX, CCS, NDSS)☆183Updated 6 months ago