Alternatives and similar repositories for wasm-taint-tracking

Users that are interested in wasm-taint-tracking are comparing it to the libraries listed below

• p-march / v8-taint
  JITed Taint Tracking in V8
  ☆15Updated 10 years ago
• wfus / WebAssembly-Taint
  Implementing taint tracking in WebAssembly as a part of the V8 Javascript Engine.
  ☆21Updated 7 years ago
• MozillaSecurity / avalanche
  Avalanche is a document generator which uses context-free grammars to generate randomized outputs for fuzz-testing.
  ☆32Updated 4 years ago
• Invizory / taintflow
  TaintFlow, a framework for JavaScript dynamic information flow analysis.
  ☆17Updated 2 years ago
• Samsung / Fluff
  A tool designed to synthesise semantically correct JavaScript snippets given arbitrary data. Useful for fuzzing.
  ☆54Updated 2 years ago
• wspr-ncsu / mininode
  Mininode is a CLI tool to reduce the attack surface of the Node.js applications by using static analysis.
  ☆21Updated 2 years ago
• mariussteffens / pmforce
  Source code for ACM CCS 2020 Paper PMForce: Systematically Analyzing postMessage Handlers at Scale
  ☆17Updated 4 years ago
• jsoverson / badjs.org
  ☆12Updated 2 years ago
• ouspg / cloudfuzzer
  ☆22Updated 8 years ago
• MozillaSecurity / ffpuppet
  A Python module that enables the automation of Firefox
  ☆32Updated last week
• tarafans / collections
  A medley of PoCs and exploits
  ☆1Updated 5 years ago
• MozillaSecurity / fuzzfetch
  Downloader for Firefox/jsshell builds for fuzzing.
  ☆39Updated this week
• rudyerudite / AngErza
  Toy implementation of a Automated Exploit Generation built on Angr; stiched using radare, pwntools, pyelftools, and Angrop.
  ☆17Updated 3 years ago
• shhnjk / spoof.js
  WinDbg script to spoof origin and url of a renderer process in Chrome
  ☆25Updated 4 years ago
• adamdoupe / enemy-of-the-state
  This novel black-box web vulnerability scanner attempts to infer the state machine of the web application.
  ☆19Updated 5 years ago
• guidovranken / fuzzing-headers
  ☆13Updated 3 years ago
• Sbouber / honggfuzz-dharma
  Integrate the dharma grammar fuzzer into honggfuzz
  ☆26Updated 7 years ago
• alterakey / trueseeing
  Non-decompiling iOS/Android app vulnerability scanner (DC25 demo lab, CB17)
  ☆63Updated 2 months ago
• dvolvox / JSpwn
  JavaScript Static Code Analysis
  ☆25Updated 10 years ago
• tracer-x / TRACER
  TRACER Symbolic Execution Tool
  ☆28Updated 4 years ago
• angr / pysoot
  Python bindings for Shimple/Jimple IR from Soot.
  ☆42Updated 4 months ago
• ForAllSecure / mayhem-examples
  Mayhem example templates for programming languages and fuzzers that you love!
  ☆30Updated last year
• pventuzelo / wasm-polyglot
  How to create a valid polyglot HTML/JS/WebAssembly module​ -
  ☆12Updated 4 years ago
• mozilla / JSBugMon
  INACTIVE - http://mzl.la/ghe-archive - Bugzilla Bug Monitor for JS shell bugs
  ☆19Updated 5 years ago
• AntoineRondelet / uxss-vulnerabilities-research
  Some research on UXSS vulnerabilities in web browsers
  ☆11Updated 7 years ago
• ExpoSEJS / z3javascript
  A JavaScript wrapper for Z3 containing support for regular expressions & capture groups
  ☆22Updated 10 months ago
• olivo / redos-detector
  A tool for detecting regular expression denial-of-service vulnerabilities in Android apps.
  ☆34Updated 8 years ago
• georlav / objectmap
  A Simple command line tool that helps checking web applications to identify insecure deserialization vulnerabilities.
  ☆24Updated 5 years ago
• typetools / sparta
  Static Program Analysis for Reliable Trusted Apps
  ☆23Updated 6 years ago
• MozillaSecurity / virgo
  Crowdsourced fuzzing cluster. 🚀
  ☆21Updated 3 years ago