JAW: A Graph-based Security Analysis Framework for Client-side JavaScript
☆118Feb 13, 2026Updated 2 months ago
Alternatives and similar repositories for JAW
Users that are interested in JAW are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- TheThing: an open-source tool to detect DOM Clobbering vulnerabilities☆57Oct 25, 2023Updated 2 years ago
- DOM Clobbering Wiki, Browser Testing, and Payload Generation☆61Dec 18, 2025Updated 4 months ago
- A web browser with dynamic data-flow tracking enabled in the Javascript engine and DOM, based on Mozilla Firefox (https://github.com/mozi…☆166Mar 30, 2026Updated 3 weeks ago
- Testability Pattern Catalogs for SAST☆34Feb 18, 2025Updated last year
- YuraScanner☆78Feb 13, 2025Updated last year
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- ☆31May 1, 2025Updated 11 months ago
- MDG-based static vulnerability scanner specialized in analyzing npm packages and detecting taint-style and prototype pollution vulnerabil…☆25Dec 10, 2025Updated 4 months ago
- Artifacts of the paper "Arcanum: Detecting and Evaluating the Privacy Risks of Browser Extensions on Web Pages and Web Content" in USENIX…☆18Aug 9, 2024Updated last year
- ObjLupAnsys is a tool to detect prototype pollution vulnerabilities in Node.js packages. This project is written in Python and JavaScript…☆25Nov 30, 2021Updated 4 years ago
- Source code for ACM CCS 2020 Paper PMForce: Systematically Analyzing postMessage Handlers at Scale☆18May 17, 2021Updated 4 years ago
- Detecting Flow of Sensitive Data in Mini-Programs with Static Taint Analysis☆81Mar 19, 2024Updated 2 years ago
- A blazing fast and fully configurable Blind SQL Injection optimization and automation framework.☆141Jun 7, 2025Updated 10 months ago
- Discovered Data and Source Code☆10May 5, 2025Updated 11 months ago
- Android webviews and securiy☆24Sep 18, 2025Updated 7 months ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Silent Spring: Prototype Pollution Leads to Remote Code Execution in Node.js☆74Jan 21, 2024Updated 2 years ago
- Instrumentation framework for Node.js compliant to ECMAScript 2020 based on GraalVM.☆58Jan 18, 2025Updated last year
- ODGen is a JavaScript Static Analysis tool to detect multiple types of vulnerabilities in Node.js packages.☆167Jan 29, 2024Updated 2 years ago
- Mini-program Cross Page Request Forgery (MiniCPRF) Analysis Tool.☆18Oct 30, 2024Updated last year
- Modular static malicious JavaScript detection system☆75Jan 18, 2021Updated 5 years ago
- burp suite插件☆13Jul 9, 2023Updated 2 years ago
- ☆92Jun 21, 2024Updated last year
- Caido plugin for jxscout☆15Nov 22, 2025Updated 5 months ago
- WALA analyses and tools that are implemented in JavaScript☆81Oct 25, 2016Updated 9 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Searcher for cross-site leaks (XS-Leaks)☆82Dec 27, 2022Updated 3 years ago
- retrieve comprehensive information about a website, including its title, last modified date, DNS information, subdomains, firewall names,…☆16Mar 24, 2024Updated 2 years ago
- Soot-based taint analysis with internal Java fluent interface for security specifications in fluentTQL implemented with MagpieBridge to s…☆18Jan 30, 2025Updated last year
- ☆56Aug 26, 2021Updated 4 years ago
- Stats about HTTP response security headers usage mentioned by the OSHP.☆16Jan 25, 2026Updated 3 months ago
- Capture and replay execution traces of client-side web applications☆28May 31, 2013Updated 12 years ago
- A project for fuzzing HTTP/1.1 CL.0 Request Smuggling Attack Vectors☆90Feb 3, 2024Updated 2 years ago
- A fuzzer setup to fuzz libc functions.☆16Aug 30, 2022Updated 3 years ago
- How effective are LLMs in identifying and exploiting security vulnerabilities?☆69Feb 28, 2025Updated last year
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- EvenBetter is a frontend Caido plugin that makes the Caido experience even better 😎☆161Feb 11, 2026Updated 2 months ago
- 基于JavaFX框�架做的一款安卓漏洞分析桌面软件,采用了反编译技术与静态分析技术,上传apk包即可分析APP可能包含的风险。☆14Nov 23, 2022Updated 3 years ago
- CodeQL queries developed by Trail of Bits☆160Updated this week
- ☆39Oct 4, 2024Updated last year
- SRE - Dissecting Malware for Static Analysis & the Complete Command-line Tool☆58Dec 29, 2024Updated last year
- Apple PCC research☆17Mar 14, 2025Updated last year
- A tool for adding new lines to files, skipping duplicates and written in Rust!☆21May 8, 2025Updated 11 months ago