CodeIntelligenceTesting / jazzer.js

Related projects: ⓘ

• CodeIntelligenceTesting / cifuzz
  ☆230Updated this week
• fuzzitdev / jsfuzz
  coverage guided fuzz testing for javascript
  ☆602Updated 3 years ago
• cs-au-dk / jelly
  JavaScript/TypeScript static analyzer for call graph construction, library usage pattern matching, and vulnerability exposure analysis
  ☆316Updated 2 weeks ago
• nuprl / augur
  Performant taint analysis for Node.js
  ☆46Updated last month
• NodeSecure / js-x-ray
  JavaScript & Node.js open-source SAST scanner. A static analyser for detecting most common malicious patterns 🔬.
  ☆224Updated this week
• ExpoSEJS / ExpoSE
  A Dynamic Symbolic Execution (DSE) engine for JavaScript. ExpoSE is highly scalable, compatible with recent JavaScript standards, and sup…
  ☆186Updated 2 months ago
• ossf / fuzz-introspector
  Fuzz Introspector -- introspect, extend and optimise fuzzers
  ☆368Updated this week
• cristianstaicu / SecBench.js
  ☆28Updated last year
• microsoft / sarif-vscode-extension
  SARIF Microsoft Visual Studio Code extension
  ☆110Updated this week
• hgarrereyn / GraphFuzz
  GraphFuzz is an experimental framework for building structure-aware, library API fuzzers.
  ☆249Updated 8 months ago
• mariusschulz / styx
  Derives a control flow graph from a JavaScript AST.
  ☆61Updated 2 years ago
• Song-Li / ODGen
  ODGen is a JavaScript Static Analysis tool to detect multiple types of vulnerabilities in Node.js packages.
  ☆146Updated 7 months ago
• sandworm-hq / sandworm-guard-js
  Easy auditing & sandboxing for your JavaScript dependencies 🪱
  ☆249Updated last year
• SoheilKhodayari / JAW
  JAW: A Graph-based Security Analysis Framework for Client-side JavaScript
  ☆91Updated 4 months ago
• quarkslab / pastis
  PASTIS: Collaborative Fuzzing Framework
  ☆156Updated last month
• SAP / project-foxhound
  A web browser with dynamic data-flow tracking enabled in the Javascript engine and DOM, based on Mozilla Firefox (https://github.com/mozi…
  ☆74Updated last week
• tlspuffin / tlspuffin
  A Dolev-Yao-model-guided fuzzer for TLS
  ☆131Updated this week
• LavaMoat / snow
  Use Snow to finally secure your web app's same origin realms!
  ☆102Updated 10 months ago
• jonathanmetzman / wasm-fuzzing-demo
  Demos of and walkthroughs on in-browser fuzzing using WebAssembly
  ☆122Updated 4 years ago
• Haiyang-Sun / nodeprof.js
  Instrumentation framework for Node.js compliant to ECMAScript 2020 based on GraalVM.
  ☆52Updated last year
• Invizory / taintflow
  TaintFlow, a framework for JavaScript dynamic information flow analysis.
  ☆16Updated last year
• trailofbits / codeql-queries
  CodeQL queries developed by Trail of Bits
  ☆72Updated 3 weeks ago
• Aurore54F / DoubleX
  Statically Detecting Vulnerable Data Flows in Browser Extensions at Scale
  ☆63Updated 2 years ago
• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆138Updated 6 months ago
• CodeIntelligenceTesting / jazzer
  Coverage-guided, in-process fuzzing for the JVM
  ☆1,009Updated last week
• TNO-S3 / WuppieFuzz
  A coverage-guided REST API fuzzer developed on top of LibAFL
  ☆67Updated this week
• connor4312 / js-fuzz
  An AFL-inspired genetic fuzz tester for JavaScript
  ☆128Updated 2 years ago
• sola-da / Synode
  Automatically Preventing Code Injection Attacks on Node.js
  ☆78Updated 2 years ago
• uds-se / FormatFuzzer
  FormatFuzzer is a framework for high-efficiency, high-quality generation and parsing of binary inputs.
  ☆395Updated 2 years ago
• parikhakshat / autoharness
  A tool that automatically creates fuzzing harnesses based on a library
  ☆280Updated 2 years ago