SoheilKhodayari/JAW external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

SoheilKhodayari/JAW

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/SoheilKhodayari/JAW)

Close

SoheilKhodayari / JAWView on GitHubMore

• External links
• Readme badge

JAW: A Graph-based Security Analysis Framework for Client-side JavaScript

☆118Feb 13, 2026Updated 4 months ago

Alternatives and similar repositories for JAW

Users that are interested in JAW are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• SoheilKhodayari / TheThing

  View on GitHub
  TheThing: an open-source tool to detect DOM Clobbering vulnerabilities
  ☆58Oct 25, 2023Updated 2 years ago
• SoheilKhodayari / DOMClobbering

  View on GitHub
  DOM Clobbering Wiki, Browser Testing, and Payload Generation
  ☆62Dec 18, 2025Updated 6 months ago
• SAP / project-foxhound

  View on GitHub
  A web browser with dynamic data-flow tracking enabled in the Javascript engine and DOM, based on Mozilla Firefox (https://github.com/mozi…
  ☆175Jun 15, 2026Updated last week
• testable-eu / sast-testability-patterns

  View on GitHub
  Testability Pattern Catalogs for SAST
  ☆35Feb 18, 2025Updated last year
• pixelindigo / yurascanner

  View on GitHub
  YuraScanner
  ☆82Feb 13, 2025Updated last year
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• fast-sp-2023 / fast

  View on GitHub
  ☆31May 1, 2025Updated last year
• testable-eu / sast-tp-framework

  View on GitHub
  TP-Framework: Testability Pattern Framework for SAST
  ☆16May 10, 2024Updated 2 years ago
• flyboss / MiniTracker

  View on GitHub
  MiniTracker: Large-Scale Sensitive Information Tracking in Mini Apps.
  ☆30Dec 2, 2024Updated last year
• Aurore54F / DoubleX

  View on GitHub
  Statically Detecting Vulnerable Data Flows in Browser Extensions at Scale
  ☆83Nov 23, 2021Updated 4 years ago
• Song-Li / ObjLupAnsys

  View on GitHub
  ObjLupAnsys is a tool to detect prototype pollution vulnerabilities in Node.js packages. This project is written in Python and JavaScript…
  ☆25Nov 30, 2021Updated 4 years ago
• mariussteffens / pmforce

  View on GitHub
  Source code for ACM CCS 2020 Paper PMForce: Systematically Analyzing postMessage Handlers at Scale
  ☆18May 17, 2021Updated 5 years ago
• pruzko / hakuin

  View on GitHub
  A blazing fast and fully configurable Blind SQL Injection optimization and automation framework.
  ☆141Jun 7, 2025Updated last year
• OSUSecLab / TaintMini

  View on GitHub
  Detecting Flow of Sensitive Data in Mini-Programs with Static Taint Analysis
  ☆81Mar 19, 2024Updated 2 years ago
• SoheilKhodayari / Basta-COSI

  View on GitHub
  A framework for the detection of COSI vulnerabilities / XS-Leaks
  ☆14Mar 29, 2023Updated 3 years ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• yo-yo-yo-jbo / android_webview_security

  View on GitHub
  Android webviews and securiy
  ☆25Sep 18, 2025Updated 9 months ago
• therahulkanyal / PanoptiChrome

  View on GitHub
  Discovered Data and Source Code
  ☆10May 5, 2025Updated last year
• SWAT-project / SWAT

  View on GitHub
  SWAT, a dynamic symbolic execution engine for Java Applications that uses ASM for on-the-fly byte code instrumentation.
  ☆46Jun 20, 2026Updated last week
• KTH-LangSec / silent-spring

  View on GitHub
  Silent Spring: Prototype Pollution Leads to Remote Code Execution in Node.js
  ☆75Jan 21, 2024Updated 2 years ago
• Kendag1l / MiniCAT

  View on GitHub
  Mini-program Cross Page Request Forgery (MiniCPRF) Analysis Tool.
  ☆18Oct 30, 2024Updated last year
• Song-Li / ODGen

  View on GitHub
  ODGen is a JavaScript Static Analysis tool to detect multiple types of vulnerabilities in Node.js packages.
  ☆169Jan 29, 2024Updated 2 years ago
• Aurore54F / JStap

  View on GitHub
  Modular static malicious JavaScript detection system
  ☆75Jan 18, 2021Updated 5 years ago
• beishanxueyuan / BChecks

  View on GitHub
  burp suite插件
  ☆14Jul 9, 2023Updated 2 years ago
• google / protobuf-extensibility-for-burp

  View on GitHub
  ☆94Jun 21, 2024Updated 2 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• francisconeves97 / jxscout-caido

  View on GitHub
  Caido plugin for jxscout
  ☆16May 31, 2026Updated 3 weeks ago
• wala / JS_WALA

  View on GitHub
  WALA analyses and tools that are implemented in JavaScript
  ☆81Oct 25, 2016Updated 9 years ago
• dibollinger / CookieBlock-Consent-Crawler

  View on GitHub
  Webcrawler to collect cookie data and usage purposes, built using OpenWPM.
  ☆13Jun 3, 2023Updated 3 years ago
• Philesiv / XSLeaker

  View on GitHub
  Searcher for cross-site leaks (XS-Leaks)
  ☆83Dec 27, 2022Updated 3 years ago
• AiGptCode / Rapid-Url

  View on GitHub
  retrieve comprehensive information about a website, including its title, last modified date, DNS information, subdomains, firewall names,…
  ☆18Mar 24, 2024Updated 2 years ago
• awsm-research / VQM

  View on GitHub
  Vision Transformer-Inspired Automated Vulnerability Repair
  ☆19May 13, 2025Updated last year
• wspr-ncsu / FV8

  View on GitHub
  ☆13Jul 9, 2024Updated last year
• detectify / Varnish-H2-Request-Smuggling

  View on GitHub
  ☆56Aug 26, 2021Updated 4 years ago
• HatBoy / Awheel

  View on GitHub
  分布式信息收集工具（又一个轮子）
  ☆43Dec 6, 2018Updated 7 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• WaterfallEngineering / reanimator

  View on GitHub
  Capture and replay execution traces of client-side web applications
  ☆28May 31, 2013Updated 13 years ago
• Aurore54F / static-pdg-js

  View on GitHub
  Static JavaScript Analysis: AST, Control Flow, Data Flow, & Pointer Analysis
  ☆29Feb 26, 2022Updated 4 years ago
• CTFTraining / huwangbei_2018_easy_tornado

  View on GitHub
  护网杯 2018 WEB (1) easy_tornado
  ☆15Aug 22, 2019Updated 6 years ago
• ElectrovoltSec / HackBench

  View on GitHub
  How effective are LLMs in identifying and exploiting security vulnerabilities?
  ☆71Feb 28, 2025Updated last year
• caido-community / EvenBetter

  View on GitHub
  EvenBetter is a frontend Caido plugin that makes the Caido experience even better 😎
  ☆165May 15, 2026Updated last month
• Bamboo-fly / Android-Vulnerability-Analysis

  View on GitHub
  基于JavaFX框架做的一款安卓漏洞分析桌面软件，采用了反编译技术与静态分析技术，上传apk包即可分析APP可能包含的风险。
  ☆14Nov 23, 2022Updated 3 years ago
• compsec-snu / fuzzorigin

  View on GitHub
  ☆18Sep 4, 2023Updated 2 years ago