soot-oss / TaintAnalysisLinks
Taint analysis implementation based on Heros and Soot
☆45Updated last year
Alternatives and similar repositories for TaintAnalysis
Users that are interested in TaintAnalysis are comparing it to the libraries listed below
Sorting:
- ☆28Updated 2 years ago
- A benchmark to evaluate taint analysis☆29Updated 3 years ago
- Detecting Flow of Sensitive Data in Mini-Programs with Static Taint Analysis☆77Updated last year
- Some test samples for CPG execution logic.☆20Updated last year
- Auto-generated CodeQL rules for matching CVE vulnerabilities and variants.☆178Updated 11 months ago
- a dataflow analysis framework implemented in Go, like soot☆36Updated 2 years ago
- 静态分析笔记 Static-Analysis-Notes 程序分析笔记 资源分享☆185Updated 2 years ago
- A declarative static analysis tool for jvm bytecode based Datalog like CodeQL☆339Updated last year
- Precision-guided context sensitivity for pointer analysis☆61Updated 2 years ago
- oh my soot !☆91Updated 3 years ago
- WALA 学习笔记☆14Updated 2 years ago
- 静态分析及代码审计自动化相关资料收集☆296Updated 3 years ago
- S&P2023 Paper☆39Updated 3 years ago
- ☆11Updated last year
- ☆27Updated last year
- Efficient and Precise Pointer-Tracking Data-Flow Framework☆66Updated 8 months ago
- Corax for Java: A general static analysis framework for java code checking.☆253Updated 8 months ago
- 静态分析基础教程☆170Updated 2 months ago
- Atropos: Effective Fuzzing of Web Applications for Server-Side Vulnerabilities☆71Updated last year
- ☆40Updated 2 years ago
- Soot-based taint analysis with internal Java fluent interface for security specifications in fluentTQL implemented with MagpieBridge to s…☆18Updated 6 months ago
- Personal CodeQL queries☆64Updated last month
- writeups for XNUCA2020Qualifier☆70Updated 4 years ago
- 《深入理解Semgrep》Finding vulnerabilities with Semgrep.☆53Updated 2 years ago
- A repository-level AI-generated code security evaluation benchmark☆124Updated last month
- SecCodeBench is a benchmark suite focusing on evaluating the security of code generated by large language models (LLMs).☆54Updated last week
- Low-level RASP: Protecting Applications Implemented in High-level Programming Languages☆64Updated 2 years ago
- This project runs a Model Context Protocol (MCP) server that wraps the CodeQL query server. It enables tools like [Cursor](https://cursor…☆105Updated 4 months ago
- Qilin: A New Framework for Supporting Fine-Grained Context-Sensitivity in Java Pointer Analysis☆137Updated 2 weeks ago
- Binary rewriting approach with fork server support to fuzz Java applications with afl-fuzz.☆91Updated 7 years ago