YASA-UAST is an intermediate representation structure for multi-language program analysis. The UAST-Parser parses code from different programming languages into a unified abstract syntax format.
☆74Mar 17, 2026Updated this week
Alternatives and similar repositories for YASA-UAST
Users that are interested in YASA-UAST are comparing it to the libraries listed below
Sorting:
- YASA is an open-source static program analysis project. Its core innovation lies in a unified intermediate representation called UAST, d…☆255Mar 5, 2026Updated 2 weeks ago
- xAST评价体系,让安全工具不再“黑盒”. The xAST evaluation benchmark makes security tools no longer a "black box".☆467Jan 15, 2026Updated 2 months ago
- generate facts from bytecode (source is https://github.com/plast-lab/doop-mirror/tree/master/generators)☆23Nov 24, 2024Updated last year
- FIRE: Combining Multi-Stage Filtering with Taint Analysis for Scalable Recurring Vulnerability Detection.☆16Sep 27, 2024Updated last year
- WxappRevealer 是一款跨平台、独立可执行的命令行工具,专注于对 WeChat 小程序(`.wxapkg`)的智能反编译与敏感信息检索☆28Dec 12, 2025Updated 3 months ago
- 高版本Fastjson在Java原生反序列化中的利用演示☆26Jan 12, 2025Updated last year
- ☆206Oct 27, 2025Updated 4 months ago
- Linux 持久化工具:自动检测可持久化方式,目前支持ssh及crab持久化,无需依赖开箱即用☆25Oct 29, 2024Updated last year
- 📚【更新中】AI-Driven Enterprise Security: Architecture, Methodology, and Practice:AI驱动的企业安全建设实战,覆盖安全架构设计、方法论框架与工程实�践,系统化提出 AISecOps 方法论框架,将 AI…☆87Jan 31, 2026Updated last month
- neo4j plugin of ByteCodeDL for the IntelliJ Platform. ByteCodeDL-Neo4j-IDEA-Plugin☆16Dec 28, 2023Updated 2 years ago
- Bundle of security analysis scripts for keras tensorflow models☆16Apr 15, 2024Updated last year
- ☆347Feb 13, 2026Updated last month
- ☆16Jun 28, 2023Updated 2 years ago
- 之前方便自己研究RASP原理和绕过时顺手写的,用于快速启动和重置RASP环境☆71Oct 13, 2024Updated last year
- 基于msf的后渗透协作平台 -- 前端部分☆20Apr 3, 2024Updated last year
- study_summary☆10Aug 8, 2022Updated 3 years ago
- 第八届 “强网杯” 全国网络安全挑战赛☆26Nov 11, 2024Updated last year
- ☆29Feb 2, 2024Updated 2 years ago
- Containerized TopSAP (SSL VPN) client from topsec.com.cn.☆11Apr 19, 2023Updated 2 years ago
- 阿波罗钓鱼演练平台(ApolloFish)的网页钓鱼模板、邮箱钓鱼模板共��享仓库。☆19Jan 20, 2026Updated 2 months ago
- 《深入JDBC安全:特殊URL构造与不出网反序列化利用技术揭秘》对应研究总结项目 "Deep Dive into JDBC Security: Special URL Construction and Non-Networked Deserialization Explo…☆572Feb 7, 2026Updated last month
- VisualDFA is a sophisticated educational tool for interactively visualizing data-flow analyses using Java/Jimple.☆12Sep 14, 2017Updated 8 years ago
- 机器学习、信息安全、《Web安全之机器学习入门》实现代码、深度学习算法实现☆29Sep 22, 2021Updated 4 years ago
- The next-generation AI Agent framework driven by Intent Engineering. Move beyond turn-based Function Calling to embrace code-level intent…☆75Jan 11, 2026Updated 2 months ago
- Static analysis tool to detect missing and incorrect error checks in C and C++ codebases without using a priori knowledge.☆19Feb 11, 2026Updated last month
- ☆17Jul 25, 2024Updated last year
- ☆11Sep 6, 2024Updated last year
- 利用代理驱动绕过JDBC Attack检测☆143Jun 15, 2025Updated 9 months ago
- 一个java代码审计辅助工具☆29Nov 2, 2022Updated 3 years ago
- Applies ROME and MEMIT on Mamba-S4 models☆14Apr 5, 2024Updated last year
- 自研C2 功能展示。cs+spark的结合体。省去了本地客户端,便于团队操作。后续开源社区版。☆16Oct 30, 2024Updated last year
- ☆22Jul 25, 2024Updated last year
- 方便自己搭建codeql环境和数据库的工具。☆64Aug 16, 2025Updated 7 months ago
- ☆12Jun 14, 2020Updated 5 years ago
- Artifact accompanying our ICSE '22 paper "Practical Automated Detection of Malicious npm Packages"☆47Jan 25, 2022Updated 4 years ago
- 目标是成为当下最完善的API挖掘工具,实现自动提取响应敏感信息、URI信息,并且对URI进行自动|手动递归检查☆257Aug 16, 2025Updated 7 months ago
- Mihomo任意文件写,可通过写SSH密钥、cron任务等实现RCE☆13May 21, 2025Updated 9 months ago
- Effective ReDoS Detection by Principled Vulnerability Modeling and Exploit Generation☆15Jul 24, 2025Updated 7 months ago
- 《深入理解Semgrep》Finding vulnerabilities with Semgrep.☆58Jul 20, 2023Updated 2 years ago