Aurore54F / DoubleXLinks
Statically Detecting Vulnerable Data Flows in Browser Extensions at Scale
☆75Updated 3 years ago
Alternatives and similar repositories for DoubleX
Users that are interested in DoubleX are comparing it to the libraries listed below
Sorting:
- ☆31Updated 8 months ago
- JAW: A Graph-based Security Analysis Framework for Client-side JavaScript☆107Updated 6 months ago
- Modular static malicious JavaScript detection system☆70Updated 4 years ago
- VFCFinder: Searching for the Missing Vulnerability Fixing Commits☆29Updated last year
- ☆45Updated 11 months ago
- Static JavaScript Analysis: AST, Control Flow, Data Flow, & Pointer Analysis☆26Updated 3 years ago
- Static data flow-based analysis of JavaScript files to detect syntactic clones☆23Updated 5 years ago
- Testability Pattern Catalogs for SAST☆31Updated 4 months ago
- A framework for identifying vulnerabilities in VS Code extensions☆18Updated 11 months ago
- ODGen is a JavaScript Static Analysis tool to detect multiple types of vulnerabilities in Node.js packages.☆153Updated last year
- ☆28Updated 2 months ago
- The source code (including datasets) of V1SCAN (USENIX Security 2023; will be uploaded).☆41Updated last year
- ☆51Updated 2 years ago
- Large Commit Precise Vulnerability Dataset based on AOSP CVE☆65Updated 2 years ago
- ObjLupAnsys is a tool to detect prototype pollution vulnerabilities in Node.js packages. This project is written in Python and JavaScript…☆24Updated 3 years ago
- A coverage-guided REST API fuzzer developed on top of LibAFL☆123Updated 3 weeks ago
- ☆21Updated last year
- This repository contains a list of papers about software supply chain☆29Updated last year
- DiAne is a smart fuzzer for IoT devices☆40Updated last year
- VulZoo: A Comprehensive Vulnerability Intelligence Dataset (ASE 2024 Demo)☆51Updated 3 months ago
- Artifacts of the paper "Arcanum: Detecting and Evaluating the Privacy Risks of Browser Extensions on Web Pages and Web Content" in USENIX…☆15Updated 10 months ago
- Reproduce CVEs from ForAllSecure Vulnerabilities Lab☆110Updated 2 years ago
- CodeQL queries developed by Trail of Bits☆99Updated 2 weeks ago
- TaintFlow, a framework for JavaScript dynamic information flow analysis.☆17Updated 2 years ago
- ☆63Updated this week
- TheThing: an open-source tool to detect DOM Clobbering vulnerabilities☆50Updated last year
- MegaVul - The largest, high-quality, extensible, continuously updated, C/C++/Java vulnerability dataset☆101Updated 5 months ago
- ☆29Updated last month
- Artifact accompanying our ICSE '22 paper "Practical Automated Detection of Malicious npm Packages"☆45Updated 3 years ago
- ☆19Updated 6 years ago