testable-eu/sast-testability-patterns external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

testable-eu/sast-testability-patterns

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/testable-eu/sast-testability-patterns)

Close

testable-eu / sast-testability-patternsView on GitHubMore

• External links
• Readme badge

Testability Pattern Catalogs for SAST

☆34Feb 18, 2025Updated last year

Alternatives and similar repositories for sast-testability-patterns

Users that are interested in sast-testability-patterns are comparing it to the libraries listed below

• testable-eu / sast-tp-framework

  View on GitHub
  TP-Framework: Testability Pattern Framework for SAST
  ☆16May 10, 2024Updated last year
• enferas / TestabilityTarpits

  View on GitHub
  Testability Tarpits: the Impact of Code Patterns on the Security Testing of Web Applications (NDSS 2022)
  ☆27Feb 14, 2024Updated 2 years ago
• pixelindigo / yurascanner

  View on GitHub
  YuraScanner
  ☆73Feb 13, 2025Updated last year
• SoheilKhodayari / JAW

  View on GitHub
  JAW: A Graph-based Security Analysis Framework for Client-side JavaScript
  ☆119Feb 13, 2026Updated last month
• ovanr / webFuzz

  View on GitHub
  A grey-box web application Fuzzer
  ☆25Aug 16, 2024Updated last year
• fast-sp-2023 / fast

  View on GitHub
  ☆32May 1, 2025Updated 10 months ago
• BEESLab / Arcanum

  View on GitHub
  Artifacts of the paper "Arcanum: Detecting and Evaluating the Privacy Risks of Browser Extensions on Web Pages and Web Content" in USENIX…
  ☆17Aug 9, 2024Updated last year
• Anemone95 / taint-benchmark

  View on GitHub
  A benchmark to evaluate taint analysis
  ☆29Jun 20, 2022Updated 3 years ago
• mikusher / vulnerability-benchmark

  View on GitHub
  Benchmark collection for analysis. The idea is to have a collection of projects in several languages as well as various sast applications…
  ☆12Jan 7, 2021Updated 5 years ago
• SpringJasmine / Jasmine

  View on GitHub
  ☆30Aug 30, 2022Updated 3 years ago
• octopus-platform / octopus

  View on GitHub
  Generic server for collaborative code analysis
  ☆13Dec 19, 2016Updated 9 years ago
• software-engineering-and-security / Gleipner

  View on GitHub
  A benchmark for Java gadget chain detecting algorithms.
  ☆15Jun 20, 2025Updated 9 months ago
• awsm-research / ChatGPT4Vul

  View on GitHub
  ☆16Nov 24, 2023Updated 2 years ago
• VainlyStrain / charon

  View on GitHub
  A polyglot static analysis engine for detecting vulnerabilities in scripting languages native extensions based on joern.
  ☆21Sep 1, 2025Updated 6 months ago
• xywang18 / Rengar

  View on GitHub
  Effective ReDoS Detection by Principled Vulnerability Modeling and Exploit Generation
  ☆15Jul 24, 2025Updated 7 months ago
• fredfeng / CS190I

  View on GitHub
  Program Synthesis
  ☆15May 17, 2021Updated 4 years ago
• asrulhadi / wap

  View on GitHub
  OWASP WAP - Web Application Protection Project
  ☆11Jul 24, 2019Updated 6 years ago
• secureweb / symphp

  View on GitHub
  Holistic Concolic Execution for Dynamic Web Applications via Symbolic Interpreter Analysis (IEEE S&P 2024)
  ☆15Oct 3, 2024Updated last year
• PavelJurasek / PHPWander

  View on GitHub
  ☆23Apr 6, 2019Updated 6 years ago
• tommiu / GithubSpider

  View on GitHub
  ☆15Jul 11, 2018Updated 7 years ago
• ShiftLeftSecurity / js2cpg

  View on GitHub
  ☆18Nov 26, 2025Updated 3 months ago
• WSP-LAB / FUGIO

  View on GitHub
  FUGIO: Automatic Exploit Generation for PHP Object Injection Vulnerabilities
  ☆98Nov 27, 2023Updated 2 years ago
• SoheilKhodayari / TheThing

  View on GitHub
  TheThing: an open-source tool to detect DOM Clobbering vulnerabilities
  ☆57Oct 25, 2023Updated 2 years ago
• dlgroupuoft / evocrawl

  View on GitHub
  ☆20Jan 19, 2026Updated 2 months ago
• columbia / quack

  View on GitHub
  Protect your PHP project from deserialization attacks! As seen on NDSS 2024
  ☆15Aug 8, 2025Updated 7 months ago
• SWAT-project / SWAT

  View on GitHub
  SWAT, a dynamic symbolic execution engine for Java Applications that uses ASM for on-the-fly byte code instrumentation.
  ☆40Apr 30, 2025Updated 10 months ago
• CoCoAbstractInterpretation / CoCo

  View on GitHub
  ☆10Sep 25, 2024Updated last year
• UTA-SPRLab / phishlang

  View on GitHub
  ☆22Dec 28, 2024Updated last year
• xywang18 / ctf-pwn-writeup

  View on GitHub
  ☆14Feb 4, 2020Updated 6 years ago
• seclab-ucr / BugLens

  View on GitHub
  The repo of "BugLens"
  ☆39Nov 12, 2025Updated 4 months ago
• evilpan / audit.vim

  View on GitHub
  Code audit (code review) with VIM.
  ☆17Jan 3, 2025Updated last year
• cuhk-seclab / TChecker

  View on GitHub
  ☆43Jan 30, 2023Updated 3 years ago
• joernio / flatgraph

  View on GitHub
  ☆30Updated this week
• LioTree / CVE-2021-30128-EXP

  View on GitHub
  ☆21Apr 30, 2021Updated 4 years ago
• joernio / ghidra2cpg

  View on GitHub
  Code Property Graph (CPG) frontend for binary applications and libraries.
  ☆95Oct 28, 2021Updated 4 years ago
• hac425xxx / joern-ida

  View on GitHub
  IDA Hexrays To Joern
  ☆46Nov 7, 2024Updated last year
• LLMs-Sec / Awesome-LLM4Security

  View on GitHub
  Awesome LLM for Cybersecurity
  ☆12Nov 16, 2024Updated last year
• AvalZ / RevOK

  View on GitHub
  An HTTP Response fuzzer to find Vulnerabilities in Security Scanners
  ☆27Jun 18, 2024Updated last year
• ShiftLeftSecurity / gaum

  View on GitHub
  ☆19Updated this week