Aurore54F / JStap
Modular static malicious JavaScript detection system
☆65Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for JStap
- Static data flow-based analysis of JavaScript files to detect syntactic clones☆22Updated 4 years ago
- Static JavaScript Analysis: AST, Control Flow, Data Flow, & Pointer Analysis☆22Updated 2 years ago
- ☆28Updated 2 years ago
- Syntactic detection of malicious (obfuscated) JavaScript files☆71Updated 4 years ago
- ☆28Updated last month
- Statically Detecting Vulnerable Data Flows in Browser Extensions at Scale☆66Updated 2 years ago
- Towards Measuring Supply Chain Attacks on Package Managers for Interpreted Languages☆121Updated 2 years ago
- ODGen is a JavaScript Static Analysis tool to detect multiple types of vulnerabilities in Node.js packages.☆147Updated 9 months ago
- ObjLupAnsys is a tool to detect prototype pollution vulnerabilities in Node.js packages. This project is written in Python and JavaScript…☆22Updated 2 years ago
- Testability Pattern Catalogs for SAST☆29Updated 7 months ago
- ☆9Updated 4 years ago
- A collection of test cases in the Java language. It contains examples for 112 different CWEs.☆52Updated 3 years ago
- JAW: A Graph-based Security Analysis Framework for Client-side JavaScript☆99Updated 3 weeks ago
- This is the repository for JÄk. I created it as prototype during my masterthesis.☆30Updated 6 years ago
- (AST-based + variables' name info) malicious JavaScript detection system, concept from Zozzle☆16Updated 4 years ago
- ☆43Updated last year
- ReDeBug Source Code.☆24Updated 10 months ago
- This repository contains a list of pseudo-sorted malicious JavaScripts collected from time to time.☆80Updated last year
- Artifact accompanying our ICSE '22 paper "Practical Automated Detection of Malicious npm Packages"☆39Updated 2 years ago
- JoanAudit - A security slicing tool that helps security auditors to perform their security auditing tasks more efficiently☆10Updated 7 years ago
- The public dataset in the paper "PatchDB: A Large-Scale Security Patch Dataset". This paper appears in the 51st Annual IEEE/IFIP Interna…☆36Updated last year
- 🪐 A Database of Existing Security Vulnerabilities Patches to Enable Evaluation of Techniques (single-commit; multi-language)☆36Updated last year
- ☆17Updated 6 years ago
- Source Code Vulnerability Detection Tools(SCVDT)provides a vulnerable code database, vulnerability detection service for Java and C/C++ p…☆110Updated 3 years ago
- Security methods for WeAkNess detection☆19Updated 3 weeks ago
- ☆23Updated 8 months ago
- ☆50Updated 10 months ago
- ☆33Updated 2 years ago
- TaintFlow, a framework for JavaScript dynamic information flow analysis.☆17Updated last year
- Static Analysis Framework for Android Hybrid Applications☆24Updated 4 years ago