cdaller/security_taint_propagation external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

cdaller/security_taint_propagation

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/cdaller/security_taint_propagation)

Close

cdaller / security_taint_propagationView on GitHubMore

• External links
• Readme badge

Java taint propagation for java. Define tainted sources, sanitizer methods and sinks via aspects.

☆28Oct 11, 2018Updated 7 years ago

Alternatives and similar repositories for security_taint_propagation

Users that are interested in security_taint_propagation are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• felixgr / pytaint

  View on GitHub
  ☆34Oct 18, 2013Updated 12 years ago
• woodpecker-appstore / BCELConverter

  View on GitHub
  BCEL class转换插件
  ☆26Apr 5, 2021Updated 5 years ago
• plast-lab / native-scanner

  View on GitHub
  An analyzer of JNI code that matches native code information with Java code
  ☆23Nov 12, 2021Updated 4 years ago
• Ant-FG-Lab / non_RCE

  View on GitHub
  ☆41Mar 10, 2021Updated 5 years ago
• gmu-swe / phosphor

  View on GitHub
  Phosphor: Dynamic Taint Tracking for the JVM
  ☆182Jun 17, 2025Updated 9 months ago
• Serverless GPU API endpoints on Runpod - Bonus Credits • Ad
  Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
• Afant1 / RemoteObjectInvocationHandler

  View on GitHub
  bypass JEP290 RaspHook code
  ☆63Sep 21, 2020Updated 5 years ago
• zyw-200 / IOTFuzzer

  View on GitHub
  ☆13Apr 8, 2019Updated 7 years ago
• atorralba / GHSL_CTF_4

  View on GitHub
  My solution for GitHub Security Lab CTF 4: CodeQL and Chill - The Java Edition
  ☆19Jun 10, 2020Updated 5 years ago
• secure-software-engineering / ideal

  View on GitHub
  IDE/AL - Alias-Aware Framework for Interprocedural Dataflow Analysis
  ☆10Mar 10, 2018Updated 8 years ago
• Ruil1n / after-deserialization-attack

  View on GitHub
  Java After-Deserialization Attack
  ☆78Apr 26, 2021Updated 4 years ago
• Ruil1n / helm-tiller-pwn

  View on GitHub
  ☆16Jan 5, 2021Updated 5 years ago
• april1989 / Incremental_Points_to_Analysis

  View on GitHub
  This is the repo for an incremental pointer analysis for Java programs. This repo has been adopted by WALA
  ☆23Feb 13, 2023Updated 3 years ago
• FormalLanguageConstrainedPathQuerying / CFPQ_Data

  View on GitHub
  Graphs and grammars for Context-Free Path Querying algorithms evaluation.
  ☆10Sep 11, 2024Updated last year
• Anemone95 / taint-benchmark

  View on GitHub
  A benchmark to evaluate taint analysis
  ☆29Jun 20, 2022Updated 3 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• codeplutos / Conference

  View on GitHub
  ☆28Sep 11, 2019Updated 6 years ago
• angelwhu / jvm-rasp

  View on GitHub
  基于JVM-Sandbox实现RASP安全监控防护
  ☆52Aug 8, 2023Updated 2 years ago
• shengqi158 / Jackson-databind-RCE-PoC

  View on GitHub
  ☆83Jan 11, 2018Updated 8 years ago
• isstac / spf-wca

  View on GitHub
  Tool for algorithmic complexity analysis based on symbolic execution
  ☆10Sep 17, 2018Updated 7 years ago
• codeplutos / MySQL-JDBC-Deserialization-Payload

  View on GitHub
  MySQL JDBC Deserialization Payload / MySQL客户端jdbc反序列化漏洞payload
  ☆13Feb 8, 2020Updated 6 years ago
• fabric8-analytics / cvejob

  View on GitHub
  A tool which tries to map CVEs from NVD to packages in supported ecosystems (Maven, NPM, PyPI).
  ☆12Jul 12, 2025Updated 9 months ago
• secure-software-engineering / PointerBench

  View on GitHub
  A points-to and alias analysis benchmark suite
  ☆42Sep 24, 2018Updated 7 years ago
• advanced-security / codeql-bundle-action

  View on GitHub
  Action to retrofit a CodeQL bundle with additional queries, libraries, and customizations
  ☆27May 8, 2024Updated last year
• Adrninistrator / java-behavior-control

  View on GitHub
  Monitor and prevent unexpected behavior of Java programs.
  ☆14Jul 6, 2021Updated 4 years ago
• Serverless GPU API endpoints on Runpod - Bonus Credits • Ad
  Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
• threedr3am / FindClassInJars

  View on GitHub
  个人用于在自动化挖掘gadget时，方便查找gadget chains中class所在jar包，以助于便捷审计测试gadget有效性的那么一个小工具。
  ☆60Mar 25, 2020Updated 6 years ago
• zerothoughts / jndipoc

  View on GitHub
  Proof of concept showing how java byte code can be injected through InitialContext.lookup() calls
  ☆42Jan 22, 2016Updated 10 years ago
• RudolfKurka / CnCRemasteredCodeRefreshMod

  View on GitHub
  ☆12Sep 27, 2020Updated 5 years ago
• threedr3am / fastjson-blacklist

  View on GitHub
  打CTF实在厌倦了找利用链，就知道一个fastjson的版本，一堆依赖找啊找，头都疼。为了解决这个烦恼，用了卓卓师傅的fastjson黑名单工具和库，自己改造了一下。
  ☆32Jan 3, 2020Updated 6 years ago
• soot-oss / heros

  View on GitHub
  IFDS/IDE Solver for Soot and other frameworks
  ☆255Mar 19, 2026Updated 3 weeks ago
• mogwailabs / deserialization-filter-blacklists

  View on GitHub
  Native Java serialization filter blacklist for common gadgets
  ☆20Sep 12, 2019Updated 6 years ago
• codeplutos / java-security-manager-bypass

  View on GitHub
  ☆153Jun 24, 2019Updated 6 years ago
• BinSigma / BinComp

  View on GitHub
  Compiler Fingerprinting
  ☆14Apr 24, 2015Updated 10 years ago
• floyd-fuh / AFL_GCJ_Fuzzing_Simple

  View on GitHub
  A simple test of fuzzing Java with AFL and GCJ
  ☆16Jan 31, 2018Updated 8 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• ucsb-seclab / autofacts

  View on GitHub
  Towards Automatically Generating a Sound and Complete Dataset for Evaluating Static Analysis Tools
  ☆14Feb 19, 2019Updated 7 years ago
• wisk / fw2elf

  View on GitHub
  Convert a raw firmware image to an ELF file.
  ☆14Feb 6, 2019Updated 7 years ago
• elManto / StaticAnalysisQueries

  View on GitHub
  A set of Code-ql/Joern queries to find vulnerabilities
  ☆67May 22, 2021Updated 4 years ago
• proganalysis / type-inference

  View on GitHub
  Automatically exported from code.google.com/p/type-inference
  ☆27Jan 22, 2019Updated 7 years ago
• 0Kee-Team / JavaProbe

  View on GitHub
  A Java runtime information-gathering tool which uses the Java Attach API for information acquisition
  ☆203Apr 26, 2021Updated 4 years ago
• rbonifacio / svfa-scala

  View on GitHub
  An implementation of sparse-value flow analysis on top of soot (using Scala)
  ☆10Dec 12, 2024Updated last year
• pwntester / JRE8u20_RCE_Gadget

  View on GitHub
  JRE8u20_RCE_Gadget
  ☆255Jul 1, 2016Updated 9 years ago