SoheilKhodayari/JAW
JAW: A Graph-based Security Analysis Framework for Client-side JavaScript
This framework helps security engineers and penetration testers find vulnerabilities in client-side JavaScript applications and websites. It takes either a JavaScript program file or a website URL as input and generates a comprehensive graph database of the application's code and behavior. From this, it can identify common client-side security flaws like DOM Clobbering, client-side CSRF, and request hijacking.
119 stars.
Use this if you need to perform deep security analysis on client-side JavaScript applications or web pages to uncover complex vulnerabilities that might be missed by simpler tools.
Not ideal if you are looking for a quick scan for server-side vulnerabilities or if your primary focus is on other programming languages.
Stars
119
Forks
21
Language
JavaScript
License
AGPL-3.0
Category
Last pushed
Feb 13, 2026
Commits (30d)
0
Get this data via API
curl "https://pt-edge.onrender.com/api/v1/quality/perception/SoheilKhodayari/JAW"
Open to everyone — 100 requests/day, no key needed. Get a free key for 1,000/day.
Related tools
scrapy/scrapy
Scrapy, a fast high-level web crawling & scraping framework for Python.
Altimis/Scweet
A simple and unlimited twitter scraper : scrape tweets, likes, retweets, following, followers,...
lexiforest/curl_cffi
Python binding for curl-impersonate fork via cffi. A http client that can impersonate browser...
plabayo/rama
modular service framework to move and transform network packets
scrapinghub/spidermon
Scrapy Extension for monitoring spiders execution.