fasten-project / fasten
Analyse package dependency networks at the call graph level
☆93Updated last year
Alternatives and similar repositories for fasten:
Users that are interested in fasten are comparing it to the libraries listed below
- Home page of project "KB"☆120Updated 2 weeks ago
- Codyze is a static analyzer for Java, C, C++ based on code property graphs☆87Updated 2 months ago
- This repository contains a list of papers about software supply chain☆27Updated 10 months ago
- Basic Gradle configuration and example drivers to get started with WALA☆29Updated 3 months ago
- Plume is a code representation benchmarking library with options to extract the AST from Java bytecode and store the result in various gr…☆73Updated 5 months ago
- The official repo of Doop, the declarative pointer analysis framework.☆173Updated 2 weeks ago
- A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…☆74Updated this week
- ShiftLeft OverflowDB☆118Updated 8 months ago
- Efficient and Precise Pointer-Tracking Data-Flow Framework☆66Updated 3 months ago
- ☆54Updated last year
- Towards Measuring Supply Chain Attacks on Package Managers for Interpreted Languages☆130Updated 2 years ago
- A library to extract Code Property Graphs from C/C++, Java, Go, Python, Ruby and every other language through LLVM-IR.☆307Updated this week
- test driver to run JUnit tests isolated in a new JVM☆16Updated 3 months ago
- This projects mines maven central and creates a global dependency graph☆32Updated 2 years ago
- Botsing is a Java framework for crash reproduction. It depends on EvoSuite (http://www.evosuite.org) for code instrumentation.☆33Updated 2 years ago
- A tool for mining commits from Git repositories and diffs to automatically extract code change pattern instances and features with ast a…☆95Updated 4 months ago
- Mutation-guided mutation-based fuzz testing☆44Updated 8 months ago
- Keep your bugs contained. A platform for studying historical software bugs.☆68Updated 2 months ago
- SARIF Microsoft Visual Studio Code extension☆113Updated this week
- CogniCrypt_SAST: CrySL-to-Static Analysis Compiler☆71Updated this week
- A C/C++ dependency scanner☆38Updated last year
- A symbolic Java virtual machine for program analysis, verification and test generation☆109Updated 2 months ago
- Soot-based taint analysis with internal Java fluent interface for security specifications in fluentTQL implemented with MagpieBridge to s…☆17Updated last month
- VFCFinder: Searching for the Missing Vulnerability Fixing Commits☆26Updated last year
- FLACOCO: Fault Localization for Java based on Industry-grade Coverage http://arxiv.org/pdf/2111.12513☆29Updated last week
- OSS-Fuzz vulnerabilities for OSV.☆150Updated this week
- Joana - Information Flow Control for Java☆92Updated 3 years ago
- TamiFlex facilitates static analysis of programs that use reflection and custom class loaders☆42Updated 3 years ago
- Automatic repair system for static analysis warnings from SonarQube's SonarJava, TDSC 2022 http://arxiv.org/pdf/2103.12033☆94Updated this week
- Qilin: A New Framework for Supporting Fine-Grained Context-Sensitivity in Java Pointer Analysis☆129Updated last month