Song-Li / ObjLupAnsysLinks
ObjLupAnsys is a tool to detect prototype pollution vulnerabilities in Node.js packages. This project is written in Python and JavaScript.
☆24Updated 3 years ago
Alternatives and similar repositories for ObjLupAnsys
Users that are interested in ObjLupAnsys are comparing it to the libraries listed below
Sorting:
- ODGen is a JavaScript Static Analysis tool to detect multiple types of vulnerabilities in Node.js packages.☆154Updated last year
- ☆29Updated 3 months ago
- ☆49Updated 2 years ago
- Precision-guided context sensitivity for pointer analysis☆61Updated 2 years ago
- ☆39Updated 2 years ago
- ☆16Updated 3 years ago
- Testability Tarpits: the Impact of Code Patterns on the Security Testing of Web Applications (NDSS 2022)☆25Updated last year
- Efficient and Precise Pointer-Tracking Data-Flow Framework☆66Updated 7 months ago
- oh my soot !☆91Updated 2 years ago
- ☆28Updated 2 years ago
- Parser utility to generate ASTs from PHP source code suitable to be processed by Joern.☆36Updated 5 years ago
- ☆11Updated 6 years ago
- Auto-generated CodeQL rules for matching CVE vulnerabilities and variants.☆178Updated 10 months ago
- ☆26Updated last year
- Atropos: Effective Fuzzing of Web Applications for Server-Side Vulnerabilities☆71Updated 11 months ago
- A set of Code-ql/Joern queries to find vulnerabilities☆63Updated 4 years ago
- Soot-based taint analysis with internal Java fluent interface for security specifications in fluentTQL implemented with MagpieBridge to s…☆18Updated 6 months ago
- ☆28Updated 3 years ago
- Taint analysis implementation based on Heros and Soot☆45Updated last year
- FUGIO: Automatic Exploit Generation for PHP Object Injection Vulnerabilities☆95Updated last year
- Qilin: A New Framework for Supporting Fine-Grained Context-Sensitivity in Java Pointer Analysis☆135Updated 3 months ago
- Works about detecting vulnerable using ML.☆86Updated 5 years ago
- Source Code Vulnerability Detection Tools(SCVDT)provides a vulnerable code database, vulnerability detection service for Java and C/C++ p…☆117Updated 4 years ago
- Plume is a code representation benchmarking library with options to extract the AST from Java bytecode and store the result in various gr…☆74Updated 9 months ago
- A GPT-Based Fuzz Driver Generator☆46Updated last year
- Detecting Flow of Sensitive Data in Mini-Programs with Static Taint Analysis☆76Updated last year
- Towards Measuring Supply Chain Attacks on Package Managers for Interpreted Languages☆134Updated 2 years ago
- A hybrid analysis framework to aid in uncovering deserialization vulnerabilities☆14Updated 9 months ago
- ReDoSHunter: A Combined Static and Dynamic Approach for Regular Expression DoS Detection☆79Updated 2 years ago
- Binary rewriting approach with fork server support to fuzz Java applications with afl-fuzz.☆91Updated 7 years ago