Alternatives and similar repositories for JStap

Users that are interested in JStap are comparing it to the libraries listed below

• Aurore54F / JaSt
  Syntactic detection of malicious (obfuscated) JavaScript files
  ☆83Updated 5 years ago
• Aurore54F / static-pdg-js
  Static JavaScript Analysis: AST, Control Flow, Data Flow, & Pointer Analysis
  ☆28Updated 3 years ago
• Song-Li / ODGen
  ODGen is a JavaScript Static Analysis tool to detect multiple types of vulnerabilities in Node.js packages.
  ☆155Updated last year
• Aurore54F / HideNoSeek
  Static data flow-based analysis of JavaScript files to detect syntactic clones
  ☆23Updated 5 years ago
• Aurore54F / DoubleX
  Statically Detecting Vulnerable Data Flows in Browser Extensions at Scale
  ☆76Updated 3 years ago
• osssanitizer / maloss
  Towards Measuring Supply Chain Attacks on Package Managers for Interpreted Languages
  ☆135Updated 3 years ago
• cristianstaicu / SecBench.js
  ☆34Updated last year
• githubnext / amalfi-artifact
  Artifact accompanying our ICSE '22 paper "Practical Automated Detection of Malicious npm Packages"
  ☆46Updated 3 years ago
• SAP / project-kb
  Home page of project "KB"
  ☆129Updated 6 months ago
• Song-Li / ObjLupAnsys
  ObjLupAnsys is a tool to detect prototype pollution vulnerabilities in Node.js packages. This project is written in Python and JavaScript…
  ☆24Updated 3 years ago
• CGCL-codes / SCVDT
  Source Code Vulnerability Detection Tools（SCVDT）provides a vulnerable code database, vulnerability detection service for Java and C/C++ p…
  ☆117Updated 4 years ago
• NUS-Curiosity / VulZoo
  VulZoo: A Comprehensive Vulnerability Intelligence Dataset | ASE 2024 Demo
  ☆64Updated 6 months ago
• TQRG / secbench
  🪐 A Database of Existing Security Vulnerabilities Patches to Enable Evaluation of Techniques (single-commit; multi-language)
  ☆41Updated 5 months ago
• js2wasm-obfuscator / translator
  ☆29Updated 3 years ago
• lxyeternal / pypi_malregistry
  The repository has collected about 10,000 malicious pypi packages. This dataset is the work of the ASE 2023 paper "An Empirical Study of…
  ☆103Updated 2 months ago
• find-sec-bugs / juliet-test-suite
  A collection of test cases in the Java language. It contains examples for 112 different CWEs.
  ☆57Updated 4 years ago
• fast-sp-2023 / fast
  ☆29Updated 5 months ago
• s3c2 / llm-vulnerable-functions
  Pairing Security Advisories with Vulnerable Functions Using Open-Source LLMs - DIMVA '24
  ☆16Updated last year
• MarM15 / js-transformations
  JavaScript Transformation Techniques Detection
  ☆10Updated 4 years ago
• secureIT-project / CVEfixes
  CVEfixes: Automated Collection of Vulnerabilities and Their Fixes from Open-Source Software
  ☆284Updated last year
• security-commits / security-patches-dataset
  ☠️ Ground-truth dataset for vulnerability prediction (known research datasets and data sources included such as NVD, CVE Details and OSV)…
  ☆96Updated 2 years ago
• s3c2 / vfcfinder
  VFCFinder: Searching for the Missing Vulnerability Fixing Commits
  ☆29Updated last year
• marcusbotacin / Automated.Malware.Generation
  Additional code and data for the automated malware generation paper
  ☆13Updated last year
• secure-software-engineering / swan
  Security methods for WeAkNess detection
  ☆20Updated 7 months ago
• ConstantinT / jAEk
  This is the repository for JÄk. I created it as prototype during my masterthesis.
  ☆30Updated 7 years ago
• Fraunhofer-AISEC / codyze
  Codyze is a static analyzer for Java, C, C++ based on code property graphs
  ☆89Updated 8 months ago
• squizz617 / vuddy
  VUDDY: A Scalable and Accurate Vulnerable Code Clone Detector (S&P'17)
  ☆51Updated 8 months ago
• SoheilKhodayari / JAW
  JAW: A Graph-based Security Analysis Framework for Client-side JavaScript
  ☆110Updated last month
• lyvd / bandit4mal
  A fork of Bandit tool with patterns to identifying malicious python code.
  ☆28Updated 3 years ago
• testable-eu / sast-testability-patterns
  Testability Pattern Catalogs for SAST
  ☆31Updated 7 months ago