Aurore54F / JStap
Modular static malicious JavaScript detection system
☆69Updated 4 years ago
Alternatives and similar repositories for JStap:
Users that are interested in JStap are comparing it to the libraries listed below
- Syntactic detection of malicious (obfuscated) JavaScript files☆81Updated 5 years ago
- Static JavaScript Analysis: AST, Control Flow, Data Flow, & Pointer Analysis☆24Updated 3 years ago
- Static data flow-based analysis of JavaScript files to detect syntactic clones☆23Updated 4 years ago
- JavaScript Transformation Techniques Detection☆10Updated 3 years ago
- Statically Detecting Vulnerable Data Flows in Browser Extensions at Scale☆72Updated 3 years ago
- Towards Measuring Supply Chain Attacks on Package Managers for Interpreted Languages☆128Updated 2 years ago
- (AST-based + variables' name info) malicious JavaScript detection system, concept from Zozzle☆16Updated 5 years ago
- ☆31Updated 4 months ago
- ODGen is a JavaScript Static Analysis tool to detect multiple types of vulnerabilities in Node.js packages.☆152Updated last year
- ObjLupAnsys is a tool to detect prototype pollution vulnerabilities in Node.js packages. This project is written in Python and JavaScript…☆22Updated 3 years ago
- Artifact accompanying our ICSE '22 paper "Practical Automated Detection of Malicious npm Packages"☆43Updated 3 years ago
- Source Code Vulnerability Detection Tools(SCVDT)provides a vulnerable code database, vulnerability detection service for Java and C/C++ p…☆112Updated 3 years ago
- ☆27Updated 3 years ago
- 🪐 A Database of Existing Security Vulnerabilities Patches to Enable Evaluation of Techniques (single-commit; multi-language)☆37Updated 2 years ago
- An Automated Vulnerability Detection System☆59Updated 8 years ago
- HiddenCPG: Large-Scale Vulnerable Clone Detection Using Subgraph Isomorphism of Code Property Graphs☆41Updated 2 years ago
- VUDDY: A Scalable and Accurate Vulnerable Code Clone Detector (S&P'17)☆52Updated last month
- This repository contains a list of pseudo-sorted malicious JavaScripts collected from time to time.☆82Updated 2 years ago
- Cyber Code Intelligence (CyberCI)☆14Updated 4 years ago
- Testability Pattern Catalogs for SAST☆29Updated last week
- ☆26Updated last year
- A collection of test cases in the Java language. It contains examples for 112 different CWEs.☆53Updated 3 years ago
- The public dataset in the paper "PatchDB: A Large-Scale Security Patch Dataset". This paper appears in the 51st Annual IEEE/IFIP Interna…☆38Updated last year
- ☠️ Ground-truth dataset for vulnerability prediction (known research datasets and data sources included such as NVD, CVE Details and OSV)…☆87Updated last year
- VFCFinder: Searching for the Missing Vulnerability Fixing Commits☆26Updated last year
- The repository has collected about 10,000 malicious pypi packages. This dataset is the work of the ASE 2023 paper "An Empirical Study of…☆79Updated 3 months ago
- This is the repository for JÄk. I created it as prototype during my masterthesis.☆30Updated 7 years ago
- CVEfixes: Automated Collection of Vulnerabilities and Their Fixes from Open-Source Software☆225Updated 7 months ago
- Security methods for WeAkNess detection☆20Updated this week