CodeShield-Security/SPDS

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/CodeShield-Security/SPDS)

CodeShield-Security / SPDS

Efficient and Precise Pointer-Tracking Data-Flow Framework

☆68

Alternatives and similar repositories for SPDS

Users that are interested in SPDS are comparing it to the libraries listed below

Sorting:

CROSSINGTUD / SPDS
View on GitHub
Efficient and Precise Pointer-Tracking Data-Flow Framework
☆41Jul 8, 2021Updated 4 years ago
Anemone95 / taint-benchmark
View on GitHub
A benchmark to evaluate taint analysis
☆27Jun 20, 2022Updated 3 years ago
secure-software-engineering / SPDS-experiments
View on GitHub
☆11Oct 10, 2018Updated 7 years ago
soot-oss / heros
View on GitHub
IFDS/IDE Solver for Soot and other frameworks
☆255Feb 13, 2026Updated 2 weeks ago
secure-software-engineering / secucheck
View on GitHub
Soot-based taint analysis with internal Java fluent interface for security specifications in fluentTQL implemented with MagpieBridge to s…
☆18Jan 30, 2025Updated last year
SpringJasmine / Jasmine
View on GitHub
☆30Aug 30, 2022Updated 3 years ago
silverbullettt / zipper
View on GitHub
Precision-guided context sensitivity for pointer analysis
☆61Jul 2, 2023Updated 2 years ago
secure-software-engineering / ideal
View on GitHub
IDE/AL - Alias-Aware Framework for Interprocedural Dataflow Analysis
☆10Mar 10, 2018Updated 7 years ago
plume-oss / plume
View on GitHub
Plume is a code representation benchmarking library with options to extract the AST from Java bytecode and store the result in various gr…
☆77Oct 14, 2024Updated last year
QilinPTA / Qilin
View on GitHub
Qilin: A New Framework for Supporting Fine-Grained Context-Sensitivity in Java Pointer Analysis
☆146Jan 22, 2026Updated last month
soot-oss / SootUp
View on GitHub
A new version of Soot with a completely overhauled architecture
☆772Feb 20, 2026Updated last week
plast-lab / doop
View on GitHub
The official repo of Doop, the declarative pointer analysis framework.
☆203Updated this week
Marcono1234 / codeql-jdk-docker
View on GitHub
Unofficial Dockerfile and scripts for building CodeQL databases for the OpenJDK
☆49Jan 7, 2024Updated 2 years ago
BytecodeDL / soot-fact-generator
View on GitHub
generate facts from bytecode (source is https://github.com/plast-lab/doop-mirror/tree/master/generators)
☆23Nov 24, 2024Updated last year
Fraunhofer-AISEC / codyze
View on GitHub
Codyze is a static analyzer for Java, C, C++ based on code property graphs
☆91Jan 22, 2025Updated last year
secure-software-engineering / PointerBench
View on GitHub
A points-to and alias analysis benchmark suite
☆41Sep 24, 2018Updated 7 years ago
ceclin / 0ctf-2021-finals-soln-buggy-loader
View on GitHub
solution to buggyLoader of 0CTF/TCTF 2021 Finals
☆20Sep 27, 2021Updated 4 years ago
noidsirius / SootTutorial
View on GitHub
A step-by-step tutorial for Soot (a Java static analysis framework)
☆449Dec 23, 2022Updated 3 years ago
soot-oss / TaintAnalysis
View on GitHub
Taint analysis implementation based on Heros and Soot
☆45May 6, 2024Updated last year
Ant-FG-Lab / non_RCE
View on GitHub
☆41Mar 10, 2021Updated 4 years ago
h2-stack / LL-RASP
View on GitHub
Low-level RASP: Protecting Applications Implemented in High-level Programming Languages
☆69Oct 19, 2025Updated 4 months ago
pietrobraione / jbse
View on GitHub
A symbolic Java virtual machine for program analysis, verification and test generation
☆120Updated this week
amaurremi / IDE
View on GitHub
Interprocedural Distributive Environment algorithm implementation
☆16Jul 16, 2015Updated 10 years ago
advanced-security / custom-codeql-bundle
View on GitHub
An example repository that demonstrates how the build custom CodeQL bundles that include query customizations through the `Customizations…
☆25Jun 27, 2022Updated 3 years ago
gmu-swe / phosphor
View on GitHub
Phosphor: Dynamic Taint Tracking for the JVM
☆180Jun 17, 2025Updated 8 months ago
wala / WALA
View on GitHub
T.J. Watson Libraries for Analysis, with front ends for Java, Android, and JavaScript, and many common static program analyses.
☆835Updated this week
OSUSecLab / TaintMini
View on GitHub
Detecting Flow of Sensitive Data in Mini-Programs with Static Taint Analysis
☆82Mar 19, 2024Updated last year
XuefengWu / dependence_java
View on GitHub
analysis java dependence and store in neo4j
☆18Oct 22, 2018Updated 7 years ago
Fraunhofer-AISEC / cpg
View on GitHub
A library to extract Code Property Graphs from C/C++, Java, Go, Python, Ruby and every other language through LLVM-IR.
☆413Updated this week
juanjolmm / java-secure-file-upload
View on GitHub
Java library used to upload files following the security steps described by OWASP
☆10Jun 7, 2021Updated 4 years ago
mogwailabs / deserialization-filter-blacklists
View on GitHub
Native Java serialization filter blacklist for common gadgets
☆20Sep 12, 2019Updated 6 years ago
HaHarden / CPGPractise
View on GitHub
Some test samples for CPG execution logic.
☆20Apr 13, 2024Updated last year
secure-software-engineering / SootFX
View on GitHub
A Static Code Feature Extraction Tool for Java and Android
☆21Jun 7, 2023Updated 2 years ago
Contrast-Security-OSS / joogle
View on GitHub
A static analysis API for finding deserialization attack gadgets
☆38Nov 7, 2022Updated 3 years ago
Barro / java-afl
View on GitHub
Binary rewriting approach with fork server support to fuzz Java applications with afl-fuzz.
☆91May 3, 2018Updated 7 years ago
Bort-Millipede / WLT3Serial
View on GitHub
Native Java-based deserialization exploit for WebLogic T3 (and T3S) listeners.
☆35Mar 2, 2020Updated 5 years ago
BytecodeDL / ByteCodeDL
View on GitHub
A declarative static analysis tool for jvm bytecode based Datalog like CodeQL
☆345Jan 6, 2024Updated 2 years ago
soot-oss / soot
View on GitHub
Soot - A Java optimization framework
☆3,071Feb 13, 2026Updated 2 weeks ago
p0p0p0 / SecurityManagement
View on GitHub
分享在建设安全管理体系、ISO27001、等级保护、安全评审过程中的点点滴滴
☆23Aug 27, 2018Updated 7 years ago