soot-oss / TaintAnalysis
Taint analysis implementation based on Heros and Soot
☆40Updated 6 months ago
Related projects ⓘ
Alternatives and complementary repositories for TaintAnalysis
- A benchmark to evaluate taint analysis☆30Updated 2 years ago
- ☆20Updated 2 years ago
- Detecting Flow of Sensitive Data in Mini-Programs with Static Taint Analysis☆73Updated 7 months ago
- a dataflow analysis framework implemented in Go, like soot☆29Updated 2 years ago
- S&P2023 Paper☆39Updated 2 years ago
- ☆21Updated 8 months ago
- WALA 学习笔记☆13Updated last year
- Some test samples for CPG execution logic.☆16Updated 6 months ago
- 静态分析笔记 Static-Analysis-Notes 程序分析笔记 资源分享☆171Updated last year
- A declarative static analysis tool for jvm bytecode based Datalog like CodeQL☆327Updated 10 months ago
- Auto-generated CodeQL rules for matching CVE vulnerabilities and variants.☆150Updated last month
- oh my soot !☆87Updated 2 years ago
- ☆35Updated last year
- Personal CodeQL queries☆58Updated this week
- Low-level RASP: Protecting Applications Implemented in High-level Programming Languages☆56Updated last year
- ☆79Updated 2 months ago
- Artifact for ICSE 2023☆45Updated 2 years ago
- 《深入理解Semgrep》Finding vulnerabilities with Semgrep.☆38Updated last year
- Precision-guided context sensitivity for pointer analysis☆57Updated last year
- 静态程序分析工具 主要生成方法的CFG和.java文件的AST☆126Updated last year
- 基于Java ASM技术和GadgetInspector的原理,尝试实现一个自动Java代码审计工具。目前做到了可控参数分析和数据流跟踪分析☆36Updated 3 years ago
- writeups for XNUCA2020Qualifier☆70Updated 3 years ago
- Collection of CTF Web challenges I made☆49Updated last year
- 用来将Tai-e改造为开箱即用的静态代码安全分析框架的一些demo☆33Updated 6 months ago
- 静态分析及代码审计自动化相关资料收集☆283Updated 2 years ago
- generate facts from bytecode (source is https://github.com/plast-lab/doop-mirror/tree/master/generators)☆23Updated 10 months ago
- 更好的包装pwntools,提高编写pwn题exp效率的工具☆26Updated 3 years ago
- 简单实现的 Java RASP☆35Updated 4 years ago
- Atropos: Effective Fuzzing of Web Applications for Server-Side Vulnerabilities☆49Updated 2 months ago