Alternatives and similar repositories for project-foxhound

Users that are interested in project-foxhound are comparing it to the libraries listed below

• SoheilKhodayari / JAW
  JAW: A Graph-based Security Analysis Framework for Client-side JavaScript
  ☆110Updated last month
• Aurore54F / DoubleX
  Statically Detecting Vulnerable Data Flows in Browser Extensions at Scale
  ☆76Updated 3 years ago
• xsleaks / wiki
  XS-Leaks Wiki
  ☆169Updated 4 months ago
• RUB-NDS / xsinator.com
  XS-Leak Browser Test Suite
  ☆85Updated last year
• Aurore54F / JStap
  Modular static malicious JavaScript detection system
  ☆73Updated 4 years ago
• RUB-NDS / AutoLeak
  Find XS-Leaks in the browser by diffing DOM-Graphs in two states
  ☆16Updated 8 months ago
• testable-eu / sast-testability-patterns
  Testability Pattern Catalogs for SAST
  ☆31Updated 8 months ago
• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆153Updated last year
• SoheilKhodayari / TheThing
  TheThing: an open-source tool to detect DOM Clobbering vulnerabilities
  ☆52Updated last year
• bahruzjabiyev / t-reqs
  Grammar-based HTTP/1 fuzzer with mutation ability
  ☆257Updated 11 months ago
• mariussteffens / pmforce
  Source code for ACM CCS 2020 Paper PMForce: Systematically Analyzing postMessage Handlers at Scale
  ☆18Updated 4 years ago
• cristianstaicu / SecBench.js
  ☆34Updated last year
• google / oss-fuzz-vulns
  OSS-Fuzz vulnerabilities for OSV.
  ☆162Updated this week
• Song-Li / ODGen
  ODGen is a JavaScript Static Analysis tool to detect multiple types of vulnerabilities in Node.js packages.
  ☆155Updated last year
• xiaofen9 / Lynx
  A Node.js vulnerability finding tool.
  ☆95Updated 2 months ago
• ajinabraham / libsast
  Generic SAST Library
  ☆132Updated 4 months ago
• Yelp / fuzz-lightyear
  A pytest-inspired, DAST framework, capable of identifying vulnerabilities in a distributed, micro-service ecosystem through chaos enginee…
  ☆227Updated last year
• Aurore54F / static-pdg-js
  Static JavaScript Analysis: AST, Control Flow, Data Flow, & Pointer Analysis
  ☆28Updated 3 years ago
• trailofbits / codeql-queries
  CodeQL queries developed by Trail of Bits
  ☆129Updated last month
• google / security-crawl-maze
  Security Crawl Maze is a comprehensive testbed for web security crawlers. It contains pages representing many ways in which one can link …
  ☆163Updated last year
• wrmelicher / ChromiumTaintTracking
  ☆19Updated 6 years ago
• jackfromeast / dom-clobbering-collection
  A collection of client-side libraries with HTML injection vulnerabilities and DOM clobbering gadgets.
  ☆34Updated last month
• pixelindigo / yurascanner
  YuraScanner
  ☆54Updated 8 months ago
• trailofbits / testing-handbook
  Trail of Bits Testing Handbook
  ☆82Updated last week
• SAP / risk-explorer-for-software-supply-chains
  A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…
  ☆78Updated 3 weeks ago
• shhnjk / cursed_types
  List of Trusted Types bypasses
  ☆102Updated last year
• cve-search / git-vuln-finder
  Finding potential software vulnerabilities from git commit messages
  ☆417Updated 2 years ago
• cezary-sec / awesome-browser-security
  A curated list of awesome browser security learning material.
  ☆145Updated 2 years ago
• Samsung / CredData
  CredData is a set of files including credentials in open source projects. CredData includes suspicious lines with manual review results a…
  ☆45Updated last week
• nuprl / augur
  Performant taint analysis for Node.js
  ☆55Updated last year