Alternatives and similar repositories for js2cpg

Users that are interested in js2cpg are comparing it to the libraries listed below

• plume-oss / plume
  Plume is a code representation benchmarking library with options to extract the AST from Java bytecode and store the result in various gr…
  ☆75Updated last year
• secure-software-engineering / COVA
  COVA - A static analysis tool to compute path conditions
  ☆40Updated 6 months ago
• secure-software-engineering / secucheck
  Soot-based taint analysis with internal Java fluent interface for security specifications in fluentTQL implemented with MagpieBridge to s…
  ☆18Updated 11 months ago
• ShiftLeftSecurity / fuzzyc2cpg
  A fuzzy parser for C/C++ that creates semantic code property graphs
  ☆37Updated 5 years ago
• joernio / flatgraph
  ☆28Updated 2 months ago
• Fraunhofer-AISEC / codyze
  Codyze is a static analyzer for Java, C, C++ based on code property graphs
  ☆91Updated 11 months ago
• Barro / java-afl
  Binary rewriting approach with fork server support to fuzz Java applications with afl-fuzz.
  ☆90Updated 7 years ago
• joernio / workshops
  Joern Workshops
  ☆29Updated last year
• aalhuz / phpjoern
  Parser utility to generate ASTs from PHP source code suitable to be processed by Joern.
  ☆15Updated 6 years ago
• GeekMasher / security-codeql
  CodeQL Security Queries
  ☆27Updated this week
• elManto / StaticAnalysisQueries
  A set of Code-ql/Joern queries to find vulnerabilities
  ☆66Updated 4 years ago
• enferas / TestabilityTarpits
  Testability Tarpits: the Impact of Code Patterns on the Security Testing of Web Applications (NDSS 2022)
  ☆25Updated last year
• vasumv / bonsai-fuzzing
  ☆27Updated 2 years ago
• vrthra / F1
  ☆82Updated 5 months ago
• angr / pysoot
  Python bindings for Shimple/Jimple IR from Soot.
  ☆42Updated 6 months ago
• adamdoupe / enemy-of-the-state
  This novel black-box web vulnerability scanner attempts to infer the state machine of the web application.
  ☆19Updated 5 years ago
• fouzhe / security
  software vulnerabilities
  ☆24Updated 6 years ago
• Rewzilla / domatophp
  CFG and scripts for fuzzing the PHP interpreter with Domato
  ☆28Updated 6 years ago
• MoonLight-SteinsGate / LearnAFL
  This is the project of LearnAFL.
  ☆28Updated 5 years ago
• SCUBSRGroup / BinaryDatabase
  Collate and collect binary related materials, including papers, tools, etc. Now,there are the following categories: 1、Fuzzing
  ☆57Updated 6 years ago
• hksecurity / FuzzBuilder
  ☆47Updated 5 years ago
• ShiftLeftSecurity / overflowdb
  ShiftLeft OverflowDB
  ☆132Updated 7 months ago
• facebook / sapp
  Post Processor for Facebook Static Analysis Tools.
  ☆140Updated this week
• risicle / cpytraceafl
  CPython bytecode instrumentation and forkserver tools for fuzzing pure python and mixed python/c code using AFL
  ☆31Updated 4 years ago
• CoCoAbstractInterpretation / CoCo
  ☆10Updated last year
• MozillaSecurity / domfuzz
  DOM fuzzers - not maintained anymore
  ☆17Updated 6 years ago
• VainlyStrain / charon
  A polyglot static analysis engine for detecting vulnerabilities in scripting languages native extensions based on joern.
  ☆19Updated 4 months ago
• joernio / query-database
  Default query sets for Joern
  ☆26Updated 4 years ago
• CGCL-codes / SCVDT
  Source Code Vulnerability Detection Tools（SCVDT）provides a vulnerable code database, vulnerability detection service for Java and C/C++ p…
  ☆118Updated 4 years ago
• mboehme / pythia
  Pythia (extends AFL with Predictions)
  ☆66Updated 4 years ago