Repository navigation

#

taint-analysis

facebook / pyre-check 

Performant type-checking for python.

Pythontypecheckertype-checkstatic-analysisOCamlCode qualityabstract-interpretation安全program-analysistaint-analysiscontrol-flow-analysis
OCaml
7083
1 天前
vimeo / psalm 

A PHP static analysis tool for finding errors and security vulnerabilities in PHP applications

static-analysisPHPtype-inferencesecurity-analysistaint-analysisHacktoberfest
PHP
5725
2 天前
JonathanSalwan / Triton 

Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software verification or just emulate code.

逆向工程symbolic-executionbinary-analysisprogram-analysistaint-analysisbinary-translationdeobfuscationinstruction-semanticslifterdynamic-analysis模拟器
C++
3843
10 天前
find-sec-bugs/find-sec-bugs
find-sec-bugs / find-sec-bugs 

The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)

findbugsJava安全owasptaint-analysiscode-analysisbytecodecwestatic-analysisHacktoberfest
Java
2364
2 个月前
python-security / pyt 

A Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Applications

static-analysisPython安全Static code analysisprogram-analysisfixed-pointdataflowdataflow-analysistaint-analysisabstract-syntax-treeFlask
Python
2187
5 年前
BinaryAnalysisPlatform / bap 

Binary Analysis Platform

binary-analysis逆向工程program-analysisstatic-analysisdynamic-analysisprogram-verificationinstruction-semanticstaint-analysisdisassemblerlifterOCamlarmx86安全模拟器powerpcmipssymbolic-execution
OCaml
2162
4 个月前
airbus-seclab / bincat 

Binary code static analyser, with IDA integration. Performs value and taint analysis, type reconstruction, use-after-free and double-free detection

ida-plugintaint-analysis逆向工程disassembly
OCaml
1819
6 个月前
pascal-lab / Tai-e 

An easy-to-learn/use static analysis framework for Java

Javastatic-analysis安全taint-analysis
Java
1643
1 天前
AngoraFuzzer / Angora 

Angora is a mutation-based fuzzer. The main goal of Angora is to increase branch coverage by solving path constraints without symbolic execution.

Fuzzing/Fuzz testing安全fuzzeraflsymbolic-executiontaint-analysisdata-flow-analysis
C++
946
3 年前
JonathanSalwan / Tigress_protection 

Playing with the Tigress software protection. Break some of its protections and solve their reverse engineering challenges. Automatic deobfuscation using symbolic execution, taint analysis and LLVM.

deobfuscationtritonsymbolic-executionLLVM逆向工程taint-analysis
LLVM
845
2 年前
decaf-project / DECAF 

DECAF (short for Dynamic Executable Code Analysis Framework) is a binary analysis platform based on QEMU. This is also the home of the DroidScope dynamic Android malware analysis platform. DroidScope is now an extension to DECAF.

binary-analysistaint-analysis
C
828
9 个月前
trailofbits / polytracker 

An LLVM-based instrumentation tool for universal taint tracking, dataflow analysis, and tracing.

LLVMInstrumentationtaint-analysisdataflow-analysis
C++
575
4 个月前
SourceCode-AI / aura 

Python source code auditing and static analysis on a large scale

static-analysisPython安全taint-analysis
Python
496
2 年前
BytecodeDL / ByteCodeDL 

A declarative static analysis tool for jvm bytecode based Datalog like CodeQL

static-analysis安全sastpoints-to-analysistaint-analysis
Shell
339
2 年前
AngoraFuzzer / libdft64 

libdft for Intel Pin 3.x and 64 bit platform. (Dynamic taint tracking, taint analysis)

安全taint-analysisFuzzing/Fuzz testingdynamic-analysis
C++
262
6 个月前
wmkhoo / taintgrind 

A taint-tracking plugin for the Valgrind memory checking tool

valgrindCtaint-analysis
C
260
3 个月前
Feysh-Group / corax-community 

Corax for Java: A general static analysis framework for java code checking.

abstract-interpretationcode-analysiscweJavaowaspprogram-analysissast安全software-analysisstatic-analysisStatic code analysistaint-analysisvulnerability
Kotlin
253
9 个月前
SVF-tools / Software-Analysis-Studio 

Teaching and Learning Software Analysis via SVF

software-analysisstatic-analysisinformation-flowtaint-analysiscoursepoints-to-analysis
C++
209
8 天前
fdu-sec / NestFuzz 

A structure-aware grey box fuzzer based on modeling the input processing logic.

taint-analysisFuzzing/Fuzz testing
C++
171
10 个月前
GlacierW / MBA 

Malware Behavior Analyzer

Malwareqemusandboxforensicstaint-analysisprogram-analysis
C
159
8 年前