YASA is an open-source static program analysis project. Its core innovation lies in a unified intermediate representation called UAST, designed to support multiple programming languages. Built on top of UAST, YASA provides a highly accurate static analysis framework.
☆249Updated this week
Alternatives and similar repositories for YASA-Engine
Users that are interested in YASA-Engine are comparing it to the libraries listed below
Sorting:
- YASA-UAST is an intermediate representation structure for multi-language program analysis. The UAST-Parser parses code from different pro…☆69Jan 14, 2026Updated last month
- A benchmark for Java gadget chain detecting algorithms.☆15Jun 20, 2025Updated 8 months ago
- JavaRce complements project - use RASP to prevent vulnerabilities☆24Apr 22, 2024Updated last year
- Holistic Concolic Execution for Dynamic Web Applications via Symbolic Interpreter Analysis (IEEE S&P 2024)☆13Oct 3, 2024Updated last year
- xAST评价体系,让安全工具不再“黑盒”. The xAST evaluation benchmark makes security tools no longer a "black box".☆463Jan 15, 2026Updated last month
- The source code of [Sec'25] Make Agent Defeat Agent: Automatic Detection of Taint-Style Vulnerabilities in LLM-based Agents☆53Sep 9, 2025Updated 5 months ago
- The next-generation AI Agent framework driven by Intent Engineering. Move beyond turn-based Function Calling to embrace code-level intent…☆65Jan 11, 2026Updated last month
- AIxCC: automated vulnerability repair via LLMs, search, and static analysis☆11Jul 16, 2024Updated last year
- ☆206Oct 27, 2025Updated 4 months ago
- A polyglot static analysis engine for detecting vulnerabilities in scripting languages native extensions based on joern.☆21Sep 1, 2025Updated 6 months ago
- ☆17Aug 31, 2023Updated 2 years ago
- IDA Hexrays To Joern☆44Nov 7, 2024Updated last year
- Effective ReDoS Detection by Principled Vulnerability Modeling and Exploit Generation☆14Jul 24, 2025Updated 7 months ago
- Parsing-based Analyzer☆70Jun 8, 2025Updated 8 months ago
- ☆16Apr 7, 2023Updated 2 years ago
- Protect your PHP project from deserialization attacks! As seen on NDSS 2024☆15Aug 8, 2025Updated 6 months ago
- ☆31May 1, 2025Updated 10 months ago
- ☆42Jan 30, 2023Updated 3 years ago
- The source code of [S&P'25] Detecting Taint-Style Vulnerabilities in Microservice-Structured Web Applications.☆61Nov 20, 2025Updated 3 months ago
- Atropos: Effective Fuzzing of Web Applications for Server-Side Vulnerabilities☆76Aug 15, 2024Updated last year
- 于几年前二次开发自 http://www.zcgonvh.com/post/CSharp_smb_version_Detection.html☆23Jan 8, 2020Updated 6 years ago
- A neurosymbolic framework for vulnerability detection in code☆329Dec 5, 2025Updated 2 months ago
- Pulled out Linux kernel code to run in userland so they could be targeted by AFL and KLEE☆20Jan 29, 2020Updated 6 years ago
- 基于msf的后渗透协作平台 -- 前端部分☆20Apr 3, 2024Updated last year
- ☆23Apr 6, 2019Updated 6 years ago
- Hacking GraalVM Espresso - Abusing Continuation API to Make ROP-like Attack☆36Aug 27, 2025Updated 6 months ago
- A declarative static analysis tool for jvm bytecode based Datalog like CodeQL☆345Jan 6, 2024Updated 2 years ago
- The source code of project "LLift" (Enhancing static analysis with LLM)☆85Mar 5, 2024Updated last year
- Lessons for syntaxflow zero to hero☆54Sep 14, 2024Updated last year
- 软件工程与形式化方法相关前沿工作阅读与分享☆36Oct 27, 2025Updated 4 months ago
- 《深入理解CodeQL》Finding vulnerabilities with CodeQL.☆1,754Nov 21, 2023Updated 2 years ago
- A continuously updated collection of CodeLLM papers maintained by PurCL group @ Purdue☆602Jan 14, 2026Updated last month
- Open source of the paper "击败SOTA反混淆方法"☆18Sep 10, 2022Updated 3 years ago
- simpleIAST- 基于污点追踪的灰盒漏洞扫描工具。☆101Dec 23, 2025Updated 2 months ago
- 《深入JDBC安全:特殊URL构造与不出网反序列化利用技术揭秘》对应研究总结项目 "Deep Dive into JDBC Security: Special URL Construction and Non-Networked Deserialization Explo…☆570Feb 7, 2026Updated 3 weeks ago
- 闭源系统半自动漏洞挖掘工具,针对 jar/war/zip 进行静态代码分析,输出从source到sink的可达路径。LLM将验证路径可达性,并根据上下文给出该路径可信分数☆502Jan 12, 2026Updated last month
- COVA - A static analysis tool to compute path conditions☆40Jul 12, 2025Updated 7 months ago
- ☆12Dec 22, 2025Updated 2 months ago
- ☆11Sep 6, 2024Updated last year