soot-oss / TaintAnalysisLinks
Taint analysis implementation based on Heros and Soot
☆45Updated last year
Alternatives and similar repositories for TaintAnalysis
Users that are interested in TaintAnalysis are comparing it to the libraries listed below
Sorting:
- ☆25Updated 2 years ago
- A benchmark to evaluate taint analysis☆30Updated 3 years ago
- Detecting Flow of Sensitive Data in Mini-Programs with Static Taint Analysis☆75Updated last year
- Some test samples for CPG execution logic.☆21Updated last year
- oh my soot !☆91Updated 2 years ago
- Auto-generated CodeQL rules for matching CVE vulnerabilities and variants.☆175Updated 9 months ago
- a dataflow analysis framework implemented in Go, like soot☆35Updated 2 years ago
- S&P2023 Paper☆39Updated 2 years ago
- ☆26Updated last year
- Precision-guided context sensitivity for pointer analysis☆61Updated last year
- 静态分析笔记 Static-Analysis-Notes 程序分析笔记 资源分享☆184Updated 2 years ago
- ☆11Updated last year
- WALA 学习笔记☆14Updated last year
- Tai-e学习记录☆17Updated last year
- A declarative static analysis tool for jvm bytecode based Datalog like CodeQL☆335Updated last year
- Qilin: A New Framework for Supporting Fine-Grained Context-Sensitivity in Java Pointer Analysis☆135Updated 2 months ago
- ☆39Updated 2 years ago
- Effective ReDoS Detection by Principled Vulnerability Modeling and Exploit Generation☆13Updated 3 weeks ago
- ☆131Updated last week
- Efficient and Precise Pointer-Tracking Data-Flow Framework☆66Updated 6 months ago
- Study WALA and static code analysis . This project introduces the required knowledge and study roadmap.☆22Updated 4 years ago
- IDA Hexrays To Joern☆41Updated 7 months ago
- writeups for XNUCA2020Qualifier☆70Updated 4 years ago
- IDA Hexrays To CodeQL☆44Updated 7 months ago
- Soot-based taint analysis with internal Java fluent interface for security specifications in fluentTQL implemented with MagpieBridge to s…☆18Updated 4 months ago
- 《深入理解Semgrep》Finding vulnerabilities with Semgrep.☆51Updated last year
- This project runs a Model Context Protocol (MCP) server that wraps the CodeQL query server. It enables tools like [Cursor](https://cursor…☆91Updated 2 months ago
- A set of Code-ql/Joern queries to find vulnerabilities☆59Updated 4 years ago
- A hybrid analysis framework to aid in uncovering deserialization vulnerabilities☆14Updated 8 months ago
- ☆21Updated 2 years ago