psycopaths / jdoop
An automatic testing tool for Java software
☆24Updated 6 years ago
Related projects ⓘ
Alternatives and complementary repositories for jdoop
- Soot-based taint analysis with internal Java fluent interface for security specifications in fluentTQL implemented with MagpieBridge to s…☆16Updated 8 months ago
- Taint analysis implementation based on Heros and Soot☆41Updated 6 months ago
- Plume is a code representation benchmarking library with options to extract the AST from Java bytecode and store the result in various gr…☆70Updated last month
- Binary rewriting approach with fork server support to fuzz Java applications with afl-fuzz.☆88Updated 6 years ago
- The official repo of Doop, the declarative pointer analysis framework.☆163Updated this week
- A benchmark to evaluate taint analysis☆30Updated 2 years ago
- a basic Gradle configuration to get started with WALA☆28Updated last month
- Detecting Flow of Sensitive Data in Mini-Programs with Static Taint Analysis☆73Updated 8 months ago
- Personal CodeQL queries☆58Updated last week
- A dynamic symbolic analysis tool for Java☆114Updated 5 years ago
- Codyze is a static analyzer for Java, C, C++ based on code property graphs☆87Updated this week
- Phosphor: Dynamic Taint Tracking for the JVM☆166Updated 3 months ago
- Static checker for Java☆84Updated 11 months ago
- Testability Tarpits: the Impact of Code Patterns on the Security Testing of Web Applications (NDSS 2022)☆23Updated 9 months ago
- Efficient and Precise Pointer-Tracking Data-Flow Framework☆66Updated 8 months ago
- A static analysis tool for Java programs, based on the theory of code property graphs.☆16Updated last year
- Parser utility to generate ASTs from PHP source code suitable to be processed by Joern.☆34Updated 4 years ago
- ☆20Updated 2 years ago
- Java taint propagation for java. Define tainted sources, sanitizer methods and sinks via aspects.☆27Updated 6 years ago
- Scalability-First Pointer Analysis with Self-Tuning Context-Sensitivity☆11Updated last year
- ☆10Updated last year
- ☆23Updated 9 months ago
- A points-to and alias analysis benchmark suite☆36Updated 6 years ago
- ☆11Updated 6 years ago
- Study WALA and static code analysis . This project introduces the required knowledge and study roadmap.☆20Updated 3 years ago
- 《深入理解Semgrep》Finding vulnerabilities with Semgrep.☆40Updated last year
- SWAT, a dynamic symbolic execution engine for Java Applications that uses ASM for on-the-fly byte code instrumentation.☆26Updated 7 months ago
- ObjLupAnsys is a tool to detect prototype pollution vulnerabilities in Node.js packages. This project is written in Python and JavaScript…☆22Updated 2 years ago
- ☆22Updated 9 months ago
- a dataflow analysis framework implemented in Go, like soot☆29Updated 2 years ago