SoheilKhodayari / JAW
JAW: A Graph-based Security Analysis Framework for Client-side JavaScript
☆99Updated 3 weeks ago
Related projects ⓘ
Alternatives and complementary repositories for JAW
- TheThing: an open-source tool to detect DOM Clobbering vulnerabilities☆40Updated last year
- Testability Pattern Catalogs for SAST☆29Updated 7 months ago
- Silent Spring: Prototype Pollution Leads to Remote Code Execution in Node.js☆56Updated 9 months ago
- Grammar-based HTTP/2 fuzzer with mutation ability☆41Updated 2 years ago
- Statically Detecting Vulnerable Data Flows in Browser Extensions at Scale☆66Updated 2 years ago
- List of Trusted Types bypasses☆85Updated 6 months ago
- FUGIO: Automatic Exploit Generation for PHP Object Injection Vulnerabilities☆90Updated 11 months ago
- ODGen is a JavaScript Static Analysis tool to detect multiple types of vulnerabilities in Node.js packages.☆147Updated 9 months ago
- XS-Leak Browser Test Suite☆73Updated 10 months ago
- ☆28Updated last month
- Artifact for ICSE 2023☆45Updated 2 years ago
- Searcher for cross-site leaks (XS-Leaks)☆81Updated last year
- Grammar-based HTTP/1 fuzzer with mutation ability☆243Updated last week
- ☆27Updated 2 years ago
- DOM Clobbering Wiki, Browser Testing, and Payload Generation☆43Updated this week
- A collection of Server-Side Prototype Pollution gadgets and exploits☆132Updated 2 months ago
- CodeQL zero to hero blog post series challenges☆85Updated 3 months ago
- ☆13Updated last year
- [CCS'24] An LLM-based, fully automated fuzzing tool for option combination testing.☆45Updated 2 weeks ago
- ObjLupAnsys is a tool to detect prototype pollution vulnerabilities in Node.js packages. This project is written in Python and JavaScript…☆22Updated 2 years ago
- ☆18Updated 5 years ago
- XBOW Validation Benchmarks☆52Updated last month
- A variant analysis and visualisation tool that scans codebases for similar vulnerabilities☆69Updated 2 years ago
- Same Origin XSS challenge☆56Updated 2 years ago
- ☆43Updated last year
- CTF writeups☆30Updated 2 years ago
- A curated list of awesome browser security learning material.☆130Updated last year
- ☆12Updated last year
- CodeQL queries developed by Trail of Bits☆73Updated last month
- ☆119Updated 6 months ago