Alternatives and similar repositories for static-pdg-js

Users that are interested in static-pdg-js are comparing it to the libraries listed below

• fast-sp-2023 / fast
  ☆28Updated 2 weeks ago
• Aurore54F / JStap
  Modular static malicious JavaScript detection system
  ☆69Updated 4 years ago
• Aurore54F / HideNoSeek
  Static data flow-based analysis of JavaScript files to detect syntactic clones
  ☆23Updated 5 years ago
• Aurore54F / DoubleX
  Statically Detecting Vulnerable Data Flows in Browser Extensions at Scale
  ☆74Updated 3 years ago
• cristianstaicu / SecBench.js
  ☆31Updated 7 months ago
• BEESLab / Arcanum
  Artifacts of the paper "Arcanum: Detecting and Evaluating the Privacy Risks of Browser Extensions on Web Pages and Web Content" in USENIX…
  ☆14Updated 9 months ago
• tjusenchen / AUSERA
  AUSERA: Automated Security Vulnerability Detection for Android Apps
  ☆32Updated 6 months ago
• WSP-LAB / HiddenCPG
  HiddenCPG: Large-Scale Vulnerable Clone Detection Using Subgraph Isomorphism of Code Property Graphs
  ☆43Updated 2 years ago
• Song-Li / ObjLupAnsys
  ObjLupAnsys is a tool to detect prototype pollution vulnerabilities in Node.js packages. This project is written in Python and JavaScript…
  ☆24Updated 3 years ago
• formalsec / graphjs
  MDG-based static vulnerability scanner specialized in analyzing npm packages and detecting taint-style and prototype pollution vulnerabil…
  ☆17Updated last month
• MarM15 / js-transformations
  JavaScript Transformation Techniques Detection
  ☆10Updated 3 years ago
• secure-software-engineering / secucheck
  Soot-based taint analysis with internal Java fluent interface for security specifications in fluentTQL implemented with MagpieBridge to s…
  ☆17Updated 3 months ago
• QilinPTA / Qilin
  Qilin: A New Framework for Supporting Fine-Grained Context-Sensitivity in Java Pointer Analysis
  ☆134Updated last month
• squizz617 / vuddy
  VUDDY: A Scalable and Accurate Vulnerable Code Clone Detector (S&P'17)
  ☆52Updated 3 months ago
• VulDeeLocator / VulDeeLocator
  ☆99Updated 6 months ago
• s3c2 / UntrustIDE
  A framework for identifying vulnerabilities in VS Code extensions
  ☆17Updated 10 months ago
• VPRLab / BackDroid
  A search-based Android static analysis tool with much better performance than Amandroid and FlowDroid
  ☆50Updated 3 years ago
• testable-eu / sast-testability-patterns
  Testability Pattern Catalogs for SAST
  ☆30Updated 2 months ago
• wala / WALA-start
  Basic Gradle configuration and example drivers to get started with WALA
  ☆29Updated 5 months ago
• Song-Li / ODGen
  ODGen is a JavaScript Static Analysis tool to detect multiple types of vulnerabilities in Node.js packages.
  ☆154Updated last year
• iris-sast / cwe-bench-java
  A manually vetted dataset for security vulnerability detection in Java projects
  ☆50Updated 3 weeks ago
• Invizory / taintflow
  TaintFlow, a framework for JavaScript dynamic information flow analysis.
  ☆17Updated 2 years ago
• CodeShield-Security / SPDS
  Efficient and Precise Pointer-Tracking Data-Flow Framework
  ☆66Updated 5 months ago
• security-commits / security-patches-dataset
  ☠️ Ground-truth dataset for vulnerability prediction (known research datasets and data sources included such as NVD, CVE Details and OSV)…
  ☆93Updated last year
• SQUARE-RG / ICCBot
  ICCBot: A Fragment-Aware and Context-Sensitive ICC Resolution Tool for Android Applications
  ☆38Updated last year
• cuhk-seclab / TChecker
  ☆38Updated 2 years ago
• OSUSecLab / TaintMini
  Detecting Flow of Sensitive Data in Mini-Programs with Static Taint Analysis
  ☆74Updated last year
• SecuringWeb / BlackWidow
  ☆48Updated 2 years ago
• SoheilKhodayari / JAW
  JAW: A Graph-based Security Analysis Framework for Client-side JavaScript
  ☆106Updated 5 months ago
• awsm-research / ChatGPT4Vul
  ☆11Updated last year