Song-Li / ODGenLinks
ODGen is a JavaScript Static Analysis tool to detect multiple types of vulnerabilities in Node.js packages.
☆153Updated last year
Alternatives and similar repositories for ODGen
Users that are interested in ODGen are comparing it to the libraries listed below
Sorting:
- ObjLupAnsys is a tool to detect prototype pollution vulnerabilities in Node.js packages. This project is written in Python and JavaScript…☆24Updated 3 years ago
- ☆31Updated 8 months ago
- ☆28Updated 2 years ago
- FUGIO: Automatic Exploit Generation for PHP Object Injection Vulnerabilities☆95Updated last year
- MINER provided by the paper "MINER: A Hybrid Data-Driven Approach for REST API Fuzzing"☆39Updated 2 years ago
- ☆38Updated 2 years ago
- Testability Pattern Catalogs for SAST☆30Updated 3 months ago
- ☆29Updated last month
- A GPT-Based Fuzz Driver Generator☆46Updated last year
- ☆48Updated 2 years ago
- A set of Code-ql/Joern queries to find vulnerabilities☆59Updated 4 years ago
- HiddenCPG: Large-Scale Vulnerable Clone Detection Using Subgraph Isomorphism of Code Property Graphs☆43Updated 2 years ago
- Towards Measuring Supply Chain Attacks on Package Managers for Interpreted Languages☆133Updated 2 years ago
- Artifact for ICSE 2023☆49Updated 2 years ago
- Atropos: Effective Fuzzing of Web Applications for Server-Side Vulnerabilities☆68Updated 9 months ago
- Link: Black-Box Detection of Cross-Site Scripting Vulnerabilities Using Reinforcement Learning☆22Updated 3 years ago
- JAW: A Graph-based Security Analysis Framework for Client-side JavaScript☆107Updated 5 months ago
- ☆16Updated 3 years ago
- CKGFuzzer: LLM-Based Fuzz Driver Generation Enhanced By Code Knowledge Graph☆76Updated 4 months ago
- [CCS'24] An LLM-based, fully automated fuzzing tool for option combination testing.☆81Updated last month
- A manually vetted dataset for security vulnerability detection in Java projects☆55Updated this week
- A deep learning model for localizing bugs in C/C++ source code (USENIX'23)☆149Updated last year
- A neurosymbolic framework for vulnerability detection in code☆81Updated last month
- Montage: A Neural Network Language Model-Guided JavaScript Engine Fuzzer☆88Updated last year
- Auto-generated CodeQL rules for matching CVE vulnerabilities and variants.☆171Updated 8 months ago
- Statically Detecting Vulnerable Data Flows in Browser Extensions at Scale☆74Updated 3 years ago
- ☆26Updated last year
- A hybrid analysis framework to aid in uncovering deserialization vulnerabilities☆13Updated 7 months ago
- Witcher is the first framework for using AFL to fuzz web applications.☆90Updated last year
- ☆104Updated last year