Detecting Flow of Sensitive Data in Mini-Programs with Static Taint Analysis
☆82Mar 19, 2024Updated 2 years ago
Alternatives and similar repositories for TaintMini
Users that are interested in TaintMini are comparing it to the libraries listed below
Sorting:
- MiniTracker: Large-Scale Sensitive Information Tracking in Mini Apps.☆31Dec 2, 2024Updated last year
- Plume is a code representation benchmarking library with options to extract the AST from Java bytecode and store the result in various gr…☆77Oct 14, 2024Updated last year
- Taint analysis implementation based on Heros and Soot☆45May 6, 2024Updated last year
- generate facts from bytecode (source is https://github.com/plast-lab/doop-mirror/tree/master/generators)☆23Nov 24, 2024Updated last year
- WALA 学习笔记☆14Aug 8, 2023Updated 2 years ago
- This is the repository for the paper "Cross Miniapp Request Forgery"☆20Aug 30, 2023Updated 2 years ago
- Precision-guided context sensitivity for pointer analysis☆61Jul 2, 2023Updated 2 years ago
- A large labeled corpus for Application Privacy Policy in Chinese to train named entity recognition models for Android Dangerous PERMSSION…☆11Jun 19, 2025Updated 9 months ago
- TSAR (Traits Static AnalyzeR)☆15May 3, 2024Updated last year
- Low-level RASP: Protecting Applications Implemented in High-level Programming Languages☆69Oct 19, 2025Updated 5 months ago
- A declarative static analysis tool for jvm bytecode based Datalog like CodeQL☆345Jan 6, 2024Updated 2 years ago
- solution to buggyLoader of 0CTF/TCTF 2021 Finals☆20Sep 27, 2021Updated 4 years ago
- Soot-based taint analysis with internal Java fluent interface for security specifications in fluentTQL implemented with MagpieBridge to s…☆18Jan 30, 2025Updated last year
- A neo4j procedure for tabby☆137May 17, 2025Updated 10 months ago
- ☆10Jul 9, 2020Updated 5 years ago
- ☆11Oct 10, 2018Updated 7 years ago
- neo4j plugin of ByteCodeDL for the IntelliJ Platform. ByteCodeDL-Neo4j-IDEA-Plugin☆16Dec 28, 2023Updated 2 years ago
- A benchmark to evaluate taint analysis☆29Jun 20, 2022Updated 3 years ago
- ☆10Sep 25, 2024Updated last year
- Corax for Java: A general static analysis framework for java code checking.☆254Dec 3, 2024Updated last year
- ☆10Nov 9, 2023Updated 2 years ago
- A high-performance, parallel, compilation-based symbolic execution engine☆145Mar 12, 2026Updated last week
- ☆19Dec 9, 2022Updated 3 years ago
- The Frida based fuzzer all in one☆30Mar 13, 2021Updated 5 years ago
- A step-by-step tutorial for Soot (a Java static analysis framework)☆448Dec 23, 2022Updated 3 years ago
- DeJITLeak: Eliminating JIT-Induced Timing Side-Channel Leaks☆15Sep 15, 2022Updated 3 years ago
- ☆13Feb 22, 2022Updated 4 years ago
- ☆41Mar 10, 2021Updated 5 years ago
- Android Benchmark Reproduction Framework☆13Nov 30, 2021Updated 4 years ago
- Auto-generated CodeQL rules for matching CVE vulnerabilities and variants.☆185Sep 19, 2024Updated last year
- A new version of Soot with a completely overhauled architecture☆774Mar 12, 2026Updated last week
- xAST评价体系,让安全工具不再“黑盒”. The xAST evaluation benchmark makes security tools no longer a "black box".☆467Jan 15, 2026Updated 2 months ago
- 静态程序分析工具 主要生成方法的CFG和.java文件的AST☆133Jul 12, 2023Updated 2 years ago
- The official repo of Doop, the declarative pointer analysis framework.☆204Mar 3, 2026Updated 2 weeks ago
- Basic Gradle configuration and example drivers to get started with WALA☆29Dec 2, 2024Updated last year
- Slides/Demos from the BSides Munich 2019 talk "Attacking Java RMI in 2019"☆101Sep 20, 2019Updated 6 years ago
- ☆147Jan 16, 2023Updated 3 years ago
- Qilin: A New Framework for Supporting Fine-Grained Context-Sensitivity in Java Pointer Analysis☆146Jan 22, 2026Updated last month
- Some tools when playing with HarmonyOS NEXT☆32Feb 4, 2026Updated last month