ODGen is a JavaScript Static Analysis tool to detect multiple types of vulnerabilities in Node.js packages.
☆169Jan 29, 2024Updated 2 years ago
Alternatives and similar repositories for ODGen
Users that are interested in ODGen are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ObjLupAnsys is a tool to detect prototype pollution vulnerabilities in Node.js packages. This project is written in Python and JavaScript…☆25Nov 30, 2021Updated 4 years ago
- ☆31May 1, 2025Updated last year
- ☆28Jul 21, 2022Updated 3 years ago
- Modular static malicious JavaScript detection system☆75Jan 18, 2021Updated 5 years ago
- Artifacts of the paper "Arcanum: Detecting and Evaluating the Privacy Risks of Browser Extensions on Web Pages and Web Content" in USENIX…☆19Aug 9, 2024Updated last year
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- Towards Measuring Supply Chain Attacks on Package Managers for Interpreted Languages☆140Oct 5, 2022Updated 3 years ago
- Testability Tarpits: the Impact of Code Patterns on the Security Testing of Web Applications (NDSS 2022)☆27Feb 14, 2024Updated 2 years ago
- This repository complements our paper by offering the training dataset, the best-performing models utilized in our real-world experiment,…☆22Mar 7, 2025Updated last year
- Silent Spring: Prototype Pollution Leads to Remote Code Execution in Node.js☆75Jan 21, 2024Updated 2 years ago
- ☆42Oct 4, 2024Updated last year
- A set of Code-ql/Joern queries to find vulnerabilities☆67May 22, 2021Updated 5 years ago
- ☆30Nov 29, 2021Updated 4 years ago
- JAW: A Graph-based Security Analysis Framework for Client-side JavaScript☆119Feb 13, 2026Updated 4 months ago
- MDG-based static vulnerability scanner specialized in analyzing npm packages and detecting taint-style and prototype pollution vulnerabil…☆25Dec 10, 2025Updated 6 months ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- a project repository for a paper☆20May 4, 2024Updated 2 years ago
- A Security Operation Tool Based on Large Language Models 基于大语言模型的安全运营工具☆23Mar 20, 2024Updated 2 years ago
- Precise and high-order static points-to/taint analysis based on LLVM IR.☆91Sep 18, 2025Updated 8 months ago
- FUGIO: Automatic Exploit Generation for PHP Object Injection Vulnerabilities☆99Nov 27, 2023Updated 2 years ago
- A curated list of awesome resources about LLM supply chain security (including papers, security reports and CVEs)☆105Jan 20, 2025Updated last year
- A Node.js vulnerability finding tool.☆96May 28, 2026Updated 2 weeks ago
- ☆17Jul 25, 2024Updated last year
- Open-source code analysis platform for C/C++/Java/Binary/Javascript/Python/Kotlin based on code property graphs. Discord https://discord.…☆3,244Updated this week
- JavaScript Transformation Techniques Detection☆11Jun 14, 2021Updated 5 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Artifact accompanying our ICSE '22 paper "Practical Automated Detection of Malicious npm Packages"☆47Jan 25, 2022Updated 4 years ago
- ☆10Sep 10, 2022Updated 3 years ago
- ☆47May 27, 2023Updated 3 years ago
- Academic papers and articles that I read related to web hacking, fuzzing, etc. / 阅读过的Web安全方向、模糊测试方向的一些论文与阅读笔记☆379Jan 26, 2024Updated 2 years ago
- get popular npm packages☆48Mar 26, 2025Updated last year
- A browser fuzzer augmented by API mod-ref relations☆35Mar 8, 2024Updated 2 years ago
- A DOM fuzzer.☆83Nov 17, 2021Updated 4 years ago
- Getting started with static program analysis. 静态程序分析入门教程。☆1,766Mar 20, 2024Updated 2 years ago
- Find context neurons in Pythia models.☆13Jun 13, 2023Updated 3 years ago
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- ☆25Oct 12, 2023Updated 2 years ago
- A declarative static analysis tool for jvm bytecode based Datalog like CodeQL☆342Jan 6, 2024Updated 2 years ago
- Statically Detecting Vulnerable Data Flows in Browser Extensions at Scale☆83Nov 23, 2021Updated 4 years ago
- TensorFlow API analysis tool and malicious model detection tool☆41May 27, 2025Updated last year
- ☆239Jan 14, 2024Updated 2 years ago
- BotScreen: Trust Everybody, but Cut the Aimbots Yourself (USENIX Security '23)☆14Aug 25, 2023Updated 2 years ago
- 《深入理解CodeQL》Finding vulnerabilities with CodeQL.☆1,771Nov 21, 2023Updated 2 years ago