Alternatives and similar repositories for static-pdg-js

Users that are interested in static-pdg-js are comparing it to the libraries listed below

• Aurore54F / JStap
  Modular static malicious JavaScript detection system
  ☆74Updated 4 years ago
• fast-sp-2023 / fast
  ☆29Updated 7 months ago
• Song-Li / ODGen
  ODGen is a JavaScript Static Analysis tool to detect multiple types of vulnerabilities in Node.js packages.
  ☆160Updated last year
• Aurore54F / DoubleX
  Statically Detecting Vulnerable Data Flows in Browser Extensions at Scale
  ☆78Updated 4 years ago
• Song-Li / ObjLupAnsys
  ObjLupAnsys is a tool to detect prototype pollution vulnerabilities in Node.js packages. This project is written in Python and JavaScript…
  ☆25Updated 4 years ago
• Aurore54F / HideNoSeek
  Static data flow-based analysis of JavaScript files to detect syntactic clones
  ☆23Updated 5 years ago
• pixelindigo / yurascanner
  YuraScanner
  ☆67Updated 10 months ago
• CoCoAbstractInterpretation / CoCo
  ☆10Updated last year
• cristianstaicu / SecBench.js
  ☆36Updated last year
• WSP-LAB / HiddenCPG
  HiddenCPG: Large-Scale Vulnerable Clone Detection Using Subgraph Isomorphism of Code Property Graphs
  ☆43Updated 3 years ago
• QilinPTA / Qilin
  Qilin: A New Framework for Supporting Fine-Grained Context-Sensitivity in Java Pointer Analysis
  ☆146Updated this week
• tjusenchen / AUSERA
  AUSERA: Automated Security Vulnerability Detection for Android Apps
  ☆32Updated last year
• iris-sast / cwe-bench-java
  A manually vetted dataset for security vulnerability detection in Java projects
  ☆81Updated 4 months ago
• testable-eu / sast-testability-patterns
  Testability Pattern Catalogs for SAST
  ☆31Updated 9 months ago
• wala / WALA-start
  Basic Gradle configuration and example drivers to get started with WALA
  ☆29Updated last year
• SoheilKhodayari / JAW
  JAW: A Graph-based Security Analysis Framework for Client-side JavaScript
  ☆115Updated 3 months ago
• PurCL / LLMSCAN
  Parsing-based Analyzer
  ☆61Updated 6 months ago
• secure-software-engineering / secucheck
  Soot-based taint analysis with internal Java fluent interface for security specifications in fluentTQL implemented with MagpieBridge to s…
  ☆18Updated 10 months ago
• iris-sast / iris
  A neurosymbolic framework for vulnerability detection in code
  ☆279Updated last week
• osssanitizer / maloss
  Towards Measuring Supply Chain Attacks on Package Managers for Interpreted Languages
  ☆135Updated 3 years ago
• SQUARE-RG / ICCBot
  ICCBot: A Fragment-Aware and Context-Sensitive ICC Resolution Tool for Android Applications
  ☆42Updated last year
• cuhk-seclab / TChecker
  ☆43Updated 2 years ago
• HexHive / Crystallizer
  A hybrid analysis framework to aid in uncovering deserialization vulnerabilities
  ☆15Updated last year
• ymirsky / VulChecker
  A deep learning model for localizing bugs in C/C++ source code (USENIX'23)
  ☆155Updated 2 years ago
• find-sec-bugs / juliet-test-suite
  A collection of test cases in the Java language. It contains examples for 112 different CWEs.
  ☆59Updated 4 years ago
• silverbullettt / zipper
  Precision-guided context sensitivity for pointer analysis
  ☆61Updated 2 years ago
• chengpeng-wang / LLMDFA
  LLMDFA: Analyzing Dataflow in Code with Large Language Models (NeurIPS 2024)
  ☆163Updated last month
• SunLab-GMU / GraphSPD
  The official repository of "GraphSPD: Graph-Based Security Patch Detection with Enriched Code Semantics". The paper will appear in the IE…
  ☆48Updated 2 years ago
• BEESLab / Arcanum
  Artifacts of the paper "Arcanum: Detecting and Evaluating the Privacy Risks of Browser Extensions on Web Pages and Web Content" in USENIX…
  ☆17Updated last year
• Fraunhofer-AISEC / codyze
  Codyze is a static analyzer for Java, C, C++ based on code property graphs
  ☆90Updated 10 months ago