Small world with high risks: A study of security threats in the npm ecosystem
M Zimmermann, CA Staicu, C Tenny… - 28th USENIX Security …, 2019 - usenix.org
The popularity of JavaScript has lead to a large ecosystem of third-party packages available
via the npm software package registry. The open nature of npm has boosted its growth …
via the npm software package registry. The open nature of npm has boosted its growth …
[PDF][PDF] CodeAlchemist: Semantics-aware code generation to find vulnerabilities in JavaScript engines.
JavaScript engines are an attractive target for attackers due to their popularity and flexibility
in building exploits. Current state-of-the-art fuzzers for finding JavaScript engine …
in building exploits. Current state-of-the-art fuzzers for finding JavaScript engine …
Silent spring: Prototype pollution leads to remote code execution in Node. js
Prototype pollution is a dangerous vulnerability affecting prototype-based languages like
JavaScript and the Node. js platform. It refers to the ability of an attacker to inject properties …
JavaScript and the Node. js platform. It refers to the ability of an attacker to inject properties …
Detecting node. js prototype pollution vulnerabilities via object lookup analysis
Prototype pollution is a type of vulnerability specific to prototype-based languages, such as
JavaScript, which allows an adversary to pollute a base object's property, leading to a further …
JavaScript, which allows an adversary to pollute a base object's property, leading to a further …
Mining node. js vulnerabilities via object dependence graph and query
Node. js is a popular non-browser JavaScript platform that provides useful but sometimes
also vulnerable packages. On one hand, prior works have proposed many program analysis …
also vulnerable packages. On one hand, prior works have proposed many program analysis …
How many of all bugs do we find? a study of static bug detectors
Static bug detectors are becoming increasingly popular and are widely used by professional
software developers. While most work on bug detectors focuses on whether they find bugs at …
software developers. While most work on bug detectors focuses on whether they find bugs at …
WaVe: a verifiably secure WebAssembly sandboxing runtime
The promise of software sandboxing is flexible, fast and portable isolation; capturing the
benefits of hardwarebased memory protection without requiring operating system …
benefits of hardwarebased memory protection without requiring operating system …
{PolyCruise}: A {Cross-Language} dynamic information flow analysis
Despite the fact that most real-world software systems today are written in multiple
programming languages, existing program analysis based security techniques are still …
programming languages, existing program analysis based security techniques are still …
Neural bug finding: A study of opportunities and challenges
Static analysis is one of the most widely adopted techniques to find software bugs before
code is put in production. Designing and implementing effective and efficient static analyses …
code is put in production. Designing and implementing effective and efficient static analyses …
[PDF][PDF] Favocado: Fuzzing the Binding Code of JavaScript Engines Using Semantically Correct Test Cases.
JavaScript runtime systems include some specialized programming interfaces, called
binding layers. Binding layers translate data representations between JavaScript and unsafe …
binding layers. Binding layers translate data representations between JavaScript and unsafe …