Cross origin JavaScript
Cross-origin JavaScript capability leaks: Detection, exploitation, and defense FREE-DOWNLOAD A Barth, J Weinberger… – … of the 18th conference on USENIX …, 2009 We identify a class of Web browser implementation vulnerabilities, cross-origin JavaScript capability leaks, which occur when the browser leaks a JavaScript pointer from one security origin to another. We devise an algorithm for detecting these […]
symbolic execution framework for JavaScript
FREE-DOWNLOAD P Saxena, D Akhawe, S Hanna, F Mao… – 2010 research Symposium Abstract—As AJAX applications gain popularity, client-side JavaScript code is becoming increasingly complex. However, few automated vulnerability analysis tools for JavaScript exist. In this paper, we describe the first system for exploring the execution space of JavaScript code
JSMeter
JSMeter: Comparing the behavior of JavaScript benchmarks with real web applications FREE-DOWNLOAD P Ratanaworabhan, B Livshits… – Proceedings of the 2010 … We measure two specific areas of JavaScript runtime behavior: 1) functions and code and 2) events and handlers. We find that the benchmarks are not representative of many real web sites and that conclusions reached […]