JAW: A Graph-based Security Analysis Framework for Client-side JavaScript
☆119Feb 13, 2026Updated last month
Alternatives and similar repositories for JAW
Users that are interested in JAW are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- TheThing: an open-source tool to detect DOM Clobbering vulnerabilities☆57Oct 25, 2023Updated 2 years ago
- DOM Clobbering Wiki, Browser Testing, and Payload Generation☆61Dec 18, 2025Updated 3 months ago
- Testability Pattern Catalogs for SAST☆34Feb 18, 2025Updated last year
- MDG-based static vulnerability scanner specialized in analyzing npm packages and detecting taint-style and prototype pollution vulnerabil…☆24Dec 10, 2025Updated 3 months ago
- ☆32May 1, 2025Updated 11 months ago
- NordVPN Special Discount Offer • AdSave on top-rated NordVPN 1 or 2-year plans with secure browsing, privacy protection, and support for for all major platforms.
- TP-Framework: Testability Pattern Framework for SAST☆16May 10, 2024Updated last year
- MiniTracker: Large-Scale Sensitive Information Tracking in Mini Apps.☆31Dec 2, 2024Updated last year
- Artifacts of the paper "Arcanum: Detecting and Evaluating the Privacy Risks of Browser Extensions on Web Pages and Web Content" in USENIX…☆17Aug 9, 2024Updated last year
- Statically Detecting Vulnerable Data Flows in Browser Extensions at Scale☆82Nov 23, 2021Updated 4 years ago
- Source code for ACM CCS 2020 Paper PMForce: Systematically Analyzing postMessage Handlers at Scale☆18May 17, 2021Updated 4 years ago
- ☆10Sep 25, 2024Updated last year
- Detecting Flow of Sensitive Data in Mini-Programs with Static Taint Analysis☆82Mar 19, 2024Updated 2 years ago
- A blazing fast and fully configurable Blind SQL Injection optimization and automation framework.☆141Jun 7, 2025Updated 10 months ago
- A framework for the detection of COSI vulnerabilities / XS-Leaks☆14Mar 29, 2023Updated 3 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
- 🐛 A list of writeups from the MSRC (Microsoft) Bug Bounty program☆31Oct 29, 2025Updated 5 months ago
- Discovered Data and Source Code☆10May 5, 2025Updated 11 months ago
- Android webviews and securiy☆23Sep 18, 2025Updated 6 months ago
- SWAT, a dynamic symbolic execution engine for Java Applications that uses ASM for on-the-fly byte code instrumentation.☆41Apr 30, 2025Updated 11 months ago
- Silent Spring: Prototype Pollution Leads to Remote Code Execution in Node.js☆75Jan 21, 2024Updated 2 years ago
- Instrumentation framework for Node.js compliant to ECMAScript 2020 based on GraalVM.☆59Jan 18, 2025Updated last year
- ODGen is a JavaScript Static Analysis tool to detect multiple types of vulnerabilities in Node.js packages.☆167Jan 29, 2024Updated 2 years ago
- Mini-program Cross Page Request Forgery (MiniCPRF) Analysis Tool.☆18Oct 30, 2024Updated last year
- Modular static malicious JavaScript detection system☆75Jan 18, 2021Updated 5 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- burp suite插件☆13Jul 9, 2023Updated 2 years ago
- ☆92Jun 21, 2024Updated last year
- Caido plugin for jxscout☆15Nov 22, 2025Updated 4 months ago
- WALA analyses and tools that are implemented in JavaScript☆81Oct 25, 2016Updated 9 years ago
- Searcher for cross-site leaks (XS-Leaks)☆82Dec 27, 2022Updated 3 years ago
- retrieve comprehensive information about a website, including its title, last modified date, DNS information, subdomains, firewall names,…☆16Mar 24, 2024Updated 2 years ago
- Vision Transformer-Inspired Automated Vulnerability Repair☆19May 13, 2025Updated 10 months ago
- Soot-based taint analysis with internal Java fluent interface for security specifications in fluentTQL implemented with MagpieBridge to s…☆18Jan 30, 2025Updated last year
- ☆56Aug 26, 2021Updated 4 years ago
- NordVPN Threat Protection Pro™ • AdTake your cybersecurity to the next level. Block phishing, malware, trackers, and ads. Lightweight app that works with all browsers.
- Stats about HTTP response security headers usage mentioned by the OSHP.☆17Jan 25, 2026Updated 2 months ago
- Capture and replay execution traces of client-side web applications☆28May 31, 2013Updated 12 years ago
- 护网杯 2018 WEB (1) easy_tornado☆15Aug 22, 2019Updated 6 years ago
- A fuzzer setup to fuzz libc functions.☆16Aug 30, 2022Updated 3 years ago
- How effective are LLMs in identifying and exploiting security vulnerabilities?☆69Feb 28, 2025Updated last year
- EvenBetter is a frontend Caido plugin that makes the Caido experience even better 😎☆161Feb 11, 2026Updated last month
- 基于JavaFX框架做的一款安卓漏洞分析桌面软件,采用了反编译技术与静态分析技术,上传apk包即可分析APP可能包含的风险。☆14Nov 23, 2022Updated 3 years ago