Alternatives and similar repositories for taintflow

Users that are interested in taintflow are comparing it to the libraries listed below

• nuprl / augur
  Performant taint analysis for Node.js
  ☆55Updated last year
• Aurore54F / HideNoSeek
  Static data flow-based analysis of JavaScript files to detect syntactic clones
  ☆23Updated 5 years ago
• secure-software-engineering / COVA
  COVA - A static analysis tool to compute path conditions
  ☆39Updated 5 months ago
• Aurore54F / DoubleX
  Statically Detecting Vulnerable Data Flows in Browser Extensions at Scale
  ☆78Updated 4 years ago
• Song-Li / ODGen
  ODGen is a JavaScript Static Analysis tool to detect multiple types of vulnerabilities in Node.js packages.
  ☆161Updated last year
• WSP-LAB / js-test-suite
  A collection of JavaScript test suites from JavaScript engine & Test262 repositories.
  ☆21Updated 5 years ago
• WSP-LAB / CRScope
  CRash Scope (CRScope) is a ML-guided crash classifier of a given JavaScript engine crash-dump file.
  ☆13Updated 6 years ago
• mariussteffens / pmforce
  Source code for ACM CCS 2020 Paper PMForce: Systematically Analyzing postMessage Handlers at Scale
  ☆18Updated 4 years ago
• secure-software-engineering / secucheck
  Soot-based taint analysis with internal Java fluent interface for security specifications in fluentTQL implemented with MagpieBridge to s…
  ☆18Updated 10 months ago
• Song-Li / ObjLupAnsys
  ObjLupAnsys is a tool to detect prototype pollution vulnerabilities in Node.js packages. This project is written in Python and JavaScript…
  ☆26Updated 4 years ago
• fast-sp-2023 / fast
  ☆30Updated 7 months ago
• wrmelicher / ChromiumTaintTracking
  ☆19Updated 7 years ago
• Aurore54F / JStap
  Modular static malicious JavaScript detection system
  ☆74Updated 4 years ago
• MoonLight-SteinsGate / LearnAFL
  This is the project of LearnAFL.
  ☆28Updated 5 years ago
• Fraunhofer-AISEC / codyze
  Codyze is a static analyzer for Java, C, C++ based on code property graphs
  ☆91Updated 10 months ago
• elManto / StaticAnalysisQueries
  A set of Code-ql/Joern queries to find vulnerabilities
  ☆66Updated 4 years ago
• cristianstaicu / SecBench.js
  ☆36Updated last year
• hksecurity / FuzzBuilder
  ☆47Updated 5 years ago
• ExpoSEJS / ExpoSE
  A Dynamic Symbolic Execution (DSE) engine for JavaScript. ExpoSE is highly scalable, compatible with recent JavaScript standards, and sup…
  ☆218Updated 11 months ago
• WSP-LAB / Montage
  Montage: A Neural Network Language Model-Guided JavaScript Engine Fuzzer
  ☆88Updated last year
• secure-software-engineering / PointerBench
  A points-to and alias analysis benchmark suite
  ☆41Updated 7 years ago
• salmonx / seeds
  模糊测试种子库 comprehensive croups for fuzzing seeds with carfefully selected(rate=coverage/filesize)
  ☆23Updated 4 years ago
• s3team / Polyglot
  ☆106Updated last year
• squizz617 / vuddy
  VUDDY: A Scalable and Accurate Vulnerable Code Clone Detector (S&P'17)
  ☆51Updated 10 months ago
• sslab-gatech / freedom
  A DOM fuzzer
  ☆154Updated 3 years ago
• vasumv / bonsai-fuzzing
  ☆27Updated 2 years ago
• ForAllSecure / VulnerabilitiesLab
  Reproduce CVEs from ForAllSecure Vulnerabilities Lab
  ☆113Updated 2 years ago
• NWU-NISL-Fuzzing / COMFORT
  ☆68Updated 4 years ago
• vulpecker / Vulpecker
  An Automated Vulnerability Detection System
  ☆59Updated 9 years ago
• too4words / securibench-micro
  Securibench Micro is a benchmark for static analysis tools for security.
  ☆26Updated 7 years ago