ODGen is a JavaScript Static Analysis tool to detect multiple types of vulnerabilities in Node.js packages.
☆168Jan 29, 2024Updated 2 years ago
Alternatives and similar repositories for ODGen
Users that are interested in ODGen are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ObjLupAnsys is a tool to detect prototype pollution vulnerabilities in Node.js packages. This project is written in Python and JavaScript…☆25Nov 30, 2021Updated 4 years ago
- ☆31May 1, 2025Updated last year
- ☆28Jul 21, 2022Updated 3 years ago
- Modular static malicious JavaScript detection system☆75Jan 18, 2021Updated 5 years ago
- Towards Measuring Supply Chain Attacks on Package Managers for Interpreted Languages☆141Oct 5, 2022Updated 3 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- Testability Tarpits: the Impact of Code Patterns on the Security Testing of Web Applications (NDSS 2022)☆27Feb 14, 2024Updated 2 years ago
- This repository complements our paper by offering the training dataset, the best-performing models utilized in our real-world experiment,…☆22Mar 7, 2025Updated last year
- Silent Spring: Prototype Pollution Leads to Remote Code Execution in Node.js☆74Jan 21, 2024Updated 2 years ago
- ☆39Oct 4, 2024Updated last year
- A set of Code-ql/Joern queries to find vulnerabilities☆67May 22, 2021Updated 4 years ago
- ☆30Nov 29, 2021Updated 4 years ago
- JAW: A Graph-based Security Analysis Framework for Client-side JavaScript☆118Feb 13, 2026Updated 2 months ago
- MDG-based static vulnerability scanner specialized in analyzing npm packages and detecting taint-style and prototype pollution vulnerabil…☆25Dec 10, 2025Updated 4 months ago
- a project repository for a paper☆20May 4, 2024Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A Security Operation Tool Based on Large Language Models 基于大语言模型的安全运营工��具☆23Mar 20, 2024Updated 2 years ago
- Precise and high-order static points-to/taint analysis based on LLVM IR.☆91Sep 18, 2025Updated 7 months ago
- A curated list of awesome resources about LLM supply chain security (including papers, security reports and CVEs)☆101Jan 20, 2025Updated last year
- FUGIO: Automatic Exploit Generation for PHP Object Injection Vulnerabilities☆99Nov 27, 2023Updated 2 years ago
- A Node.js vulnerability finding tool.☆96Aug 7, 2025Updated 8 months ago
- ☆17Jul 25, 2024Updated last year
- Open-source code analysis platform for C/C++/Java/Binary/Javascript/Python/Kotlin based on code property graphs. Discord https://discord.…☆3,137Updated this week
- Artifact accompanying our ICSE '22 paper "Practical Automated Detection of Malicious npm Packages"☆47Jan 25, 2022Updated 4 years ago
- ☆10Sep 10, 2022Updated 3 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- ☆47May 27, 2023Updated 2 years ago
- Academic papers and articles that I read related to web hacking, fuzzing, etc. / 阅读过的Web安全方向、模糊测试方向的一些论文与阅读笔记☆379Jan 26, 2024Updated 2 years ago
- get popular npm packages☆46Mar 26, 2025Updated last year
- A browser fuzzer augmented by API mod-ref relations☆35Mar 8, 2024Updated 2 years ago
- A DOM fuzzer.☆83Nov 17, 2021Updated 4 years ago
- Getting started with static program analysis. 静态程序分析入门教程。☆1,763Mar 20, 2024Updated 2 years ago
- Find context neurons in Pythia models.☆13Jun 13, 2023Updated 2 years ago
- ☆25Oct 12, 2023Updated 2 years ago
- A declarative static analysis tool for jvm bytecode based Datalog like CodeQL☆341Jan 6, 2024Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Statically Detecting Vulnerable Data Flows in Browser Extensions at Scale☆82Nov 23, 2021Updated 4 years ago
- TensorFlow API analysis tool and malicious model detection tool☆40May 27, 2025Updated 11 months ago
- ☆238Jan 14, 2024Updated 2 years ago
- 《深入理解CodeQL》Finding vulnerabilities with CodeQL.☆1,769Nov 21, 2023Updated 2 years ago
- ☆163May 24, 2024Updated last year
- A Web Platform API proposal for Blob URL☆10Feb 24, 2023Updated 3 years ago
- ☆15Mar 19, 2022Updated 4 years ago