soot-oss / TaintAnalysisLinks
Taint analysis implementation based on Heros and Soot
☆45Updated last year
Alternatives and similar repositories for TaintAnalysis
Users that are interested in TaintAnalysis are comparing it to the libraries listed below
Sorting:
- ☆28Updated 2 years ago
- A benchmark to evaluate taint analysis☆29Updated 3 years ago
- Detecting Flow of Sensitive Data in Mini-Programs with Static Taint Analysis☆76Updated last year
- Some test samples for CPG execution logic.☆20Updated last year
- 静态分析笔记 Static-Analysis-Notes 程序分析笔记 资源分享☆185Updated 2 years ago
- oh my soot !☆91Updated 2 years ago
- Auto-generated CodeQL rules for matching CVE vulnerabilities and variants.☆176Updated 10 months ago
- a dataflow analysis framework implemented in Go, like soot☆36Updated 2 years ago
- Precision-guided context sensitivity for pointer analysis☆61Updated 2 years ago
- A declarative static analysis tool for jvm bytecode based Datalog like CodeQL☆336Updated last year
- WALA 学习笔记☆14Updated last year
- S&P2023 Paper☆39Updated 2 years ago
- ☆26Updated last year
- ☆11Updated last year
- 静态分析基础教程☆171Updated last month
- 静态分析及代码审计自动化相关资料收集☆296Updated 3 years ago
- Qilin: A New Framework for Supporting Fine-Grained Context-Sensitivity in Java Pointer Analysis☆135Updated 3 months ago
- Efficient and Precise Pointer-Tracking Data-Flow Framework☆66Updated 7 months ago
- Corax for Java: A general static analysis framework for java code checking.☆253Updated 7 months ago
- Personal CodeQL queries☆64Updated last month
- Soot-based taint analysis with internal Java fluent interface for security specifications in fluentTQL implemented with MagpieBridge to s…☆18Updated 6 months ago
- ☆39Updated 2 years ago
- ReDoSHunter: A Combined Static and Dynamic Approach for Regular Expression DoS Detection☆79Updated 2 years ago
- writeups for XNUCA2020Qualifier☆70Updated 4 years ago
- This project runs a Model Context Protocol (MCP) server that wraps the CodeQL query server. It enables tools like [Cursor](https://cursor…☆101Updated 4 months ago
- ☆38Updated 3 years ago
- Atropos: Effective Fuzzing of Web Applications for Server-Side Vulnerabilities☆71Updated 11 months ago
- 《深入理解Semgrep》Finding vulnerabilities with Semgrep.☆52Updated 2 years ago
- neo4j plugin of ByteCodeDL for the IntelliJ Platform. ByteCodeDL-Neo4j-IDEA-Plugin☆16Updated last year
- Low-level RASP: Protecting Applications Implemented in High-level Programming Languages☆64Updated last year