Invizory / taintflow

Related projects ⓘ

Alternatives and complementary repositories for taintflow

• nuprl / augur
  Performant taint analysis for Node.js
  ☆49Updated 3 months ago
• Song-Li / ObjLupAnsys
  ObjLupAnsys is a tool to detect prototype pollution vulnerabilities in Node.js packages. This project is written in Python and JavaScript…
  ☆22Updated 2 years ago
• cristianstaicu / SecBench.js
  ☆28Updated last month
• Haiyang-Sun / nodeprof.js
  Instrumentation framework for Node.js compliant to ECMAScript 2020 based on GraalVM.
  ☆53Updated 2 months ago
• mariussteffens / pmforce
  Source code for ACM CCS 2020 Paper PMForce: Systematically Analyzing postMessage Handlers at Scale
  ☆17Updated 3 years ago
• testable-eu / sast-testability-patterns
  Testability Pattern Catalogs for SAST
  ☆29Updated 8 months ago
• secure-software-engineering / secucheck
  Soot-based taint analysis with internal Java fluent interface for security specifications in fluentTQL implemented with MagpieBridge to s…
  ☆16Updated 8 months ago
• secure-software-engineering / COVA
  COVA - A static analysis tool to compute path conditions
  ☆32Updated 2 years ago
• wfus / WebAssembly-Taint
  Implementing taint tracking in WebAssembly as a part of the V8 Javascript Engine.
  ☆21Updated 6 years ago
• vasumv / bonsai-fuzzing
  ☆27Updated last year
• HexHive / SieveFuzz
  Optimizing Directed Fuzzing via Target-tailored Program State Restriction
  ☆28Updated last year
• wrmelicher / ChromiumTaintTracking
  ☆17Updated 5 years ago
• SunLab-GMU / PatchDB
  The public dataset in the paper "PatchDB: A Large-Scale Security Patch Dataset". This paper appears in the 51st Annual IEEE/IFIP Interna…
  ☆37Updated last year
• Aurore54F / DoubleX
  Statically Detecting Vulnerable Data Flows in Browser Extensions at Scale
  ☆67Updated 3 years ago
• AngoraFuzzer / FuzzingRealProgramBenchStatistics
  List the real world programs evaluated in fuzzing papers.
  ☆53Updated 5 years ago
• RiS3-Lab / muse
  Source code of MEUZZ fuzzer
  ☆43Updated 2 years ago
• Aurore54F / HideNoSeek
  Static data flow-based analysis of JavaScript files to detect syntactic clones
  ☆22Updated 4 years ago
• arguslab / NativeFlowBench
  Benchmark apps for static analyzing native world of Android applications.
  ☆12Updated 6 years ago
• nettrino / slowfuzz
  ☆50Updated 6 years ago
• fast-sp-2023 / fast
  ☆23Updated 9 months ago
• elManto / StaticAnalysisQueries
  A set of Code-ql/Joern queries to find vulnerabilities
  ☆56Updated 3 years ago
• awen-li / PolyCruise
  A Cross-Language Dynamic Information Flow Analysis.
  ☆24Updated last year
• zjuchenyuan / dockerized_fuzzing
  Run fuzzing experiments in Docker
  ☆98Updated 3 years ago
• hksecurity / FuzzBuilder
  ☆47Updated 4 years ago
• susperius / icisc_rnnfuzz
  The tools used to train the models used for the ICISC paper "Recurrent neural networks for fuzz testing web browsers"
  ☆28Updated 5 years ago
• ucsb-seclab / diane
  DiAne is a smart fuzzer for IoT devices
  ☆39Updated 7 months ago
• compsec-snu / fuzzorigin
  ☆13Updated last year
• salmonx / seeds
  模糊测试种子库 comprehensive croups for fuzzing seeds with carfefully selected(rate=coverage/filesize)
  ☆20Updated 3 years ago
• WSP-LAB / js-test-suite
  A collection of JavaScript test suites from JavaScript engine & Test262 repositories.
  ☆21Updated 4 years ago
• OSUSecLab / SelectiveTaint
  ☆71Updated 3 years ago