Alternatives and similar repositories for yurascanner

Users that are interested in yurascanner are comparing it to the libraries listed below

• testable-eu / sast-testability-patterns
  Testability Pattern Catalogs for SAST
  ☆31Updated 6 months ago
• SoheilKhodayari / JAW
  JAW: A Graph-based Security Analysis Framework for Client-side JavaScript
  ☆111Updated this week
• Song-Li / ODGen
  ODGen is a JavaScript Static Analysis tool to detect multiple types of vulnerabilities in Node.js packages.
  ☆155Updated last year
• SecuringWeb / BlackWidow
  ☆51Updated 2 years ago
• secureweb / fuzzcache
  FuzzCache: Optimizing Web Application Fuzzing Through Software-Based Data Cache (ACM CCS 2024)
  ☆16Updated 10 months ago
• secureweb / symphp
  Holistic Concolic Execution for Dynamic Web Applications via Symbolic Interpreter Analysis (IEEE S&P 2024)
  ☆12Updated 11 months ago
• sefcom / Witcher
  Witcher is the first framework for using AFL to fuzz web applications.
  ☆94Updated last year
• iris-sast / iris
  A neurosymbolic framework for vulnerability detection in code
  ☆223Updated 2 weeks ago
• GitHubSecurityLab / codeql-zero-to-hero
  CodeQL zero to hero blog post series challenges
  ☆140Updated 2 months ago
• CISPA-SysSec / atropos-legacy
  Atropos: Effective Fuzzing of Web Applications for Server-Side Vulnerabilities
  ☆72Updated last year
• fast-sp-2023 / fast
  ☆29Updated 4 months ago
• huhusmang / Awesome-LLMs-for-Vulnerability-Detection
  Awesome Large Language Models for Vulnerability Detection
  ☆248Updated last week
• cuhk-seclab / TChecker
  ☆41Updated 2 years ago
• Song-Li / ObjLupAnsys
  ObjLupAnsys is a tool to detect prototype pollution vulnerabilities in Node.js packages. This project is written in Python and JavaScript…
  ☆24Updated 3 years ago
• WSP-LAB / FUGIO
  FUGIO: Automatic Exploit Generation for PHP Object Injection Vulnerabilities
  ☆94Updated last year
• NASP-THU / ProphetFuzz
  [CCS'24] An LLM-based, fully automated fuzzing tool for option combination testing.
  ☆87Updated 4 months ago
• malteskoruppa / phpjoern
  Parser utility to generate ASTs from PHP source code suitable to be processed by Joern.
  ☆35Updated 5 years ago
• LianKee / CLDroid
  A data pool-aware static analyzer to detect cross-layer threats in Android apps.
  ☆12Updated last year
• ShenaoW / awesome-llm-supply-chain-security
  A curated list of awesome resources about LLM supply chain security (including papers, security reports and CVEs)
  ☆86Updated 7 months ago
• WSP-LAB / Link
  Link: Black-Box Detection of Cross-Site Scripting Vulnerabilities Using Reinforcement Learning
  ☆24Updated 3 years ago
• xywang18 / Rengar
  Effective ReDoS Detection by Principled Vulnerability Modeling and Exploit Generation
  ☆13Updated last month
• iris-sast / cwe-bench-java
  A manually vetted dataset for security vulnerability detection in Java projects
  ☆75Updated last month
• mo-xiaoxi / HDiff
  ☆25Updated 3 years ago
• KTH-LangSec / silent-spring
  Silent Spring: Prototype Pollution Leads to Remote Code Execution in Node.js
  ☆73Updated last year
• seclab-fudan / RecurScan
  ☆27Updated last year
• OwenSanzas / LLM-For-Software-Security
  Hey folks, this is a repository for papers on LLM for Vuln. Detection area
  ☆61Updated 5 months ago
• GCMiner / GCMiner
  Artifact for ICSE 2023
  ☆49Updated 2 years ago
• PurCL / RepoAudit
  An autonomous LLM-agent for large-scale, repository-level code auditing
  ☆229Updated last month
• SoheilKhodayari / TheThing
  TheThing: an open-source tool to detect DOM Clobbering vulnerabilities
  ☆51Updated last year
• KHenryAegis / VulnBot
  The repository of VulnBot: Autonomous Penetration Testing for A Multi-Agent Collaborative Framework.
  ☆92Updated 5 months ago