soot-oss / TaintAnalysis
Taint analysis implementation based on Heros and Soot
☆44Updated 10 months ago
Alternatives and similar repositories for TaintAnalysis:
Users that are interested in TaintAnalysis are comparing it to the libraries listed below
- ☆24Updated 2 years ago
- A benchmark to evaluate taint analysis☆30Updated 2 years ago
- Detecting Flow of Sensitive Data in Mini-Programs with Static Taint Analysis☆74Updated last year
- S&P2023 Paper☆39Updated 2 years ago
- Auto-generated CodeQL rules for matching CVE vulnerabilities and variants.☆165Updated 6 months ago
- Some test samples for CPG execution logic.☆21Updated 11 months ago
- 静态分析笔记 Static-Analysis-Notes 程序分析笔记 资源分享☆178Updated 2 years ago
- a dataflow analysis framework implemented in Go, like soot☆33Updated 2 years ago
- Precision-guided context sensitivity for pointer analysis☆60Updated last year
- WALA 学习笔记☆14Updated last year
- ☆24Updated last year
- A declarative static analysis tool for jvm bytecode based Datalog like CodeQL☆334Updated last year
- ☆106Updated 3 weeks ago
- oh my soot !☆89Updated 2 years ago
- 静态分析及代码审计自动化相关资料收集☆291Updated 2 years ago
- Low-level RASP: Protecting Applications Implemented in High-level Programming Languages☆58Updated last year
- Personal CodeQL queries☆61Updated 2 weeks ago
- 《深入理解Semgrep》Finding vulnerabilities with Semgrep.☆47Updated last year
- 用来将Tai-e改造为开箱即用的静态代码安全分析框架的一些demo☆36Updated 11 months ago
- ☆37Updated 2 years ago
- ObjLupAnsys is a tool to detect prototype pollution vulnerabilities in Node.js packages. This project is written in Python and JavaScript…☆23Updated 3 years ago
- writeups for XNUCA2020Qualifier☆70Updated 4 years ago
- nativeRasp that can hook native methods☆23Updated last year
- generate facts from bytecode (source is https://github.com/plast-lab/doop-mirror/tree/master/generators)☆23Updated 4 months ago
- A neo4j procedure for tabby☆119Updated 9 months ago
- Qilin: A New Framework for Supporting Fine-Grained Context-Sensitivity in Java Pointer Analysis☆129Updated last month
- ☆29Updated last year
- ☆38Updated 3 years ago
- 2021西湖论剑IoT、虚实结合赛后开放资源☆64Updated 3 years ago
- Atropos: Effective Fuzzing of Web Applications for Server-Side Vulnerabilities☆65Updated 7 months ago