Alternatives and similar repositories for taintflow

Users that are interested in taintflow are comparing it to the libraries listed below

• nuprl / augur
  Performant taint analysis for Node.js
  ☆55Updated last year
• Aurore54F / HideNoSeek
  Static data flow-based analysis of JavaScript files to detect syntactic clones
  ☆23Updated 5 years ago
• Song-Li / ODGen
  ODGen is a JavaScript Static Analysis tool to detect multiple types of vulnerabilities in Node.js packages.
  ☆160Updated last year
• Aurore54F / DoubleX
  Statically Detecting Vulnerable Data Flows in Browser Extensions at Scale
  ☆78Updated 3 years ago
• secure-software-engineering / COVA
  COVA - A static analysis tool to compute path conditions
  ☆39Updated 4 months ago
• cristianstaicu / SecBench.js
  ☆36Updated last year
• WSP-LAB / js-test-suite
  A collection of JavaScript test suites from JavaScript engine & Test262 repositories.
  ☆21Updated 5 years ago
• WSP-LAB / CRScope
  CRash Scope (CRScope) is a ML-guided crash classifier of a given JavaScript engine crash-dump file.
  ☆13Updated 6 years ago
• Aurore54F / JStap
  Modular static malicious JavaScript detection system
  ☆74Updated 4 years ago
• hksecurity / FuzzBuilder
  ☆47Updated 5 years ago
• Aurore54F / static-pdg-js
  Static JavaScript Analysis: AST, Control Flow, Data Flow, & Pointer Analysis
  ☆28Updated 3 years ago
• Song-Li / ObjLupAnsys
  ObjLupAnsys is a tool to detect prototype pollution vulnerabilities in Node.js packages. This project is written in Python and JavaScript…
  ☆25Updated 3 years ago
• secure-software-engineering / secucheck
  Soot-based taint analysis with internal Java fluent interface for security specifications in fluentTQL implemented with MagpieBridge to s…
  ☆18Updated 9 months ago
• elManto / StaticAnalysisQueries
  A set of Code-ql/Joern queries to find vulnerabilities
  ☆65Updated 4 years ago
• Fraunhofer-AISEC / codyze
  Codyze is a static analyzer for Java, C, C++ based on code property graphs
  ☆89Updated 10 months ago
• franchiotta / taintchecker
  Clang static checker that carries out tainting analysis.
  ☆88Updated 7 years ago
• vulpecker / Vulpecker
  An Automated Vulnerability Detection System
  ☆59Updated 9 years ago
• mariussteffens / pmforce
  Source code for ACM CCS 2020 Paper PMForce: Systematically Analyzing postMessage Handlers at Scale
  ☆18Updated 4 years ago
• fast-sp-2023 / fast
  ☆29Updated 6 months ago
• AngoraFuzzer / FuzzingRealProgramBenchStatistics
  List the real world programs evaluated in fuzzing papers.
  ☆56Updated 6 years ago
• zjuchenyuan / dockerized_fuzzing
  Run fuzzing experiments in Docker
  ☆101Updated 4 years ago
• wtwofire / A-systematic-review-of-fuzzing-based-on-machine-learning-techniques
  ☆10Updated 5 years ago
• mboehme / pythia
  Pythia (extends AFL with Predictions)
  ☆66Updated 4 years ago
• squizz617 / vuddy
  VUDDY: A Scalable and Accurate Vulnerable Code Clone Detector (S&P'17)
  ☆51Updated 9 months ago
• testable-eu / sast-testability-patterns
  Testability Pattern Catalogs for SAST
  ☆31Updated 9 months ago
• neu-se / CONFETTI
  ☆22Updated 3 years ago
• awen-li / PolyCruise
  A Cross-Language Dynamic Information Flow Analysis.
  ☆25Updated 2 years ago
• WSP-LAB / Montage
  Montage: A Neural Network Language Model-Guided JavaScript Engine Fuzzer
  ☆87Updated last year
• salmonx / seeds
  模糊测试种子库 comprehensive croups for fuzzing seeds with carfefully selected(rate=coverage/filesize)
  ☆23Updated 4 years ago
• wrmelicher / ChromiumTaintTracking
  ☆19Updated 6 years ago