Alternatives and similar repositories for taint-analysis

Users that are interested in taint-analysis are comparing it to the libraries listed below

• Song-Li / ObjLupAnsys
  ObjLupAnsys is a tool to detect prototype pollution vulnerabilities in Node.js packages. This project is written in Python and JavaScript…
  ☆24Updated 3 years ago
• fast-sp-2023 / fast
  ☆29Updated 2 months ago
• Fraunhofer-AISEC / codyze
  Codyze is a static analyzer for Java, C, C++ based on code property graphs
  ☆88Updated 5 months ago
• naman / TaintAnalysis
  Interprocedural Taint Analysis using SOOT
  ☆8Updated 8 years ago
• formalsec / graphjs
  MDG-based static vulnerability scanner specialized in analyzing npm packages and detecting taint-style and prototype pollution vulnerabil…
  ☆18Updated 3 months ago
• CGCL-codes / SCVDT
  Source Code Vulnerability Detection Tools（SCVDT）provides a vulnerable code database, vulnerability detection service for Java and C/C++ p…
  ☆117Updated 4 years ago
• osssanitizer / maloss
  Towards Measuring Supply Chain Attacks on Package Managers for Interpreted Languages
  ☆133Updated 2 years ago
• vulpecker / Vulpecker
  An Automated Vulnerability Detection System
  ☆60Updated 8 years ago
• Song-Li / ODGen
  ODGen is a JavaScript Static Analysis tool to detect multiple types of vulnerabilities in Node.js packages.
  ☆153Updated last year
• dbrumley / redebug
  ReDeBug Source Code.
  ☆24Updated last year
• zhunki / skyfire
  ☆54Updated 6 years ago
• lilicoding / soot-infoflow-android-iccta
  Inter-component communication Taint Analysis for Android
  ☆91Updated 9 years ago
• olivo / TaintPHP
  Taint Analysis for PHP
  ☆45Updated 9 years ago
• squizz617 / vuddy
  VUDDY: A Scalable and Accurate Vulnerable Code Clone Detector (S&P'17)
  ☆51Updated 5 months ago
• soot-oss / heros
  IFDS/IDE Solver for Soot and other frameworks
  ☆248Updated 2 years ago
• zongpy / FuzzGuard
  The released code of FuzzGuard in USENIX Security 2020.
  ☆31Updated 5 years ago
• yuanchun-li / HybridFlow
  static taint analysis of hybrid Android Apps (Java + HTML)
  ☆13Updated 3 years ago
• RiS3-Lab / FICS
  ☆50Updated 4 years ago
• CGCL-codes / VulDeePecker
  VulDeePecker: A Deep Learning-Based System for Vulnerability Detection
  ☆326Updated 4 years ago
• ucsb-seclab / diane
  DiAne is a smart fuzzer for IoT devices
  ☆40Updated last year
• SecretPatch / Dataset
  Datasets of the paper: Detecting "0-Day" Vulnerability: An Empirical Study of Secret Security Patch in OSS
  ☆19Updated 6 years ago
• isstac / kelinci
  AFL-based fuzzing for Java
  ☆238Updated 5 years ago
• gmu-swe / phosphor
  Phosphor: Dynamic Taint Tracking for the JVM
  ☆177Updated 3 weeks ago
• SocietyMaster / FlowCog
  Project FlowCog (2017)
  ☆27Updated 6 years ago
• wala / WALA-start
  Basic Gradle configuration and example drivers to get started with WALA
  ☆29Updated 7 months ago
• Anemone95 / MLDetectVuln
  Works about detecting vulnerable using ML.
  ☆85Updated 5 years ago
• Aurore54F / HideNoSeek
  Static data flow-based analysis of JavaScript files to detect syntactic clones
  ☆23Updated 5 years ago
• wimkeir / graft
  A static analysis tool for Java programs, based on the theory of code property graphs.
  ☆18Updated 2 years ago
• Tricker-z / TPLite
  ISSTA'23 - Third-party Library Dependency for Large-scale SCA in the C/C++ Ecosystem: How Far Are We?
  ☆30Updated last year
• hao-fu / MyFlowAnalysis
  Flow analysis using Soot
  ☆51Updated 5 years ago