taint-analysis

There are 47 repositories under taint-analysis topic.

• facebook / pyre-check

  Performant type-checking for python.

  pythontypecheckertype-checkstatic-analysisocamlcode-qualityabstract-interpretationsecurityprogram-analysistaint-analysiscontrol-flow-analysis
  Language:OCaml 7107

• vimeo / psalm

  A PHP static analysis tool for finding errors and security vulnerabilities in PHP applications

  hacktoberfestphpsecurity-analysisstatic-analysistaint-analysistype-inference
  Language:PHP 5769

• JonathanSalwan / Triton

  Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software verification or just emulate code.

  binary-analysisbinary-translationdeobfuscationdynamic-analysisemulatorinstruction-semanticslifterprogram-analysisreverse-engineeringsymbolic-executiontaint-analysis
  Language:C++ 3910
• find-sec-bugs

  find-sec-bugs / find-sec-bugs

  The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)

  findbugsjavasecurity-auditowasptaint-analysiscode-analysissecuritybytecodecwestatic-analysishacktoberfest
  Language:Java 2387

• python-security / pyt

  A Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Applications

  pytcontrol-flow-graphstatic-analysispythonpython3securitystatic-code-analysisprogram-analysisfixed-pointfixed-point-analysisdataflowdataflow-analysistainttaint-analysisabstract-syntax-treeabstract-syntaxflask
  Language:Python 2200

• BinaryAnalysisPlatform / bap

  Binary Analysis Platform

  armbapbinary-analysisdisassemblerdynamic-analysisemulatorinstruction-semanticsliftermipsocamlpowerpcprogram-analysisprogram-verificationreverse-engineeringsecuritystatic-analysissymbolic-executiontaint-analysisx86
  Language:OCaml 2184

• airbus-seclab / bincat

  Binary code static analyser, with IDA integration. Performs value and taint analysis, type reconstruction, use-after-free and double-free detection

  ida-plugintaint-analysisreverse-engineeringdisassembly
  Language:OCaml 1835

• pascal-lab / Tai-e

  An easy-to-learn/use static analysis framework for Java

  call-graphjavasecuritystatic-analysistaint-analysis
  Language:Java 1698

• AngoraFuzzer / Angora

  Angora is a mutation-based fuzzer. The main goal of Angora is to increase branch coverage by solving path constraints without symbolic execution.

  afldata-flow-analysisfuzzerfuzzingsecuritysymbolic-executiontaint-analysis
  Language:C++ 947

• JonathanSalwan / Tigress_protection

  Playing with the Tigress software protection. Break some of its protections and solve their reverse engineering challenges. Automatic deobfuscation using symbolic execution, taint analysis and LLVM.

  deobfuscationllvmreverse-engineeringsolution-tigress-challengesymbolic-executiontaint-analysistigresstigress-protectionstriton
  Language:LLVM 856

• decaf-project / DECAF

  DECAF (short for Dynamic Executable Code Analysis Framework) is a binary analysis platform based on QEMU. This is also the home of the DroidScope dynamic Android malware analysis platform. DroidScope is now an extension to DECAF.

  binary-analysistaint-analysis
  Language:C 829

• trailofbits / polytracker

  An LLVM-based instrumentation tool for universal taint tracking, dataflow analysis, and tracing.

  llvminstrumentationtaint-analysistaint-trackingdataflow-analysis
  Language:C++ 583

• SourceCode-AI / aura

  Python source code auditing and static analysis on a large scale

  static-analysispythonsecurity-audittaint-analysis
  Language:Python 495

• TheAuditorTool / Auditor

  Antidote to VibeCoding

  aianthropic-claudeastclaude-codecode-analysisjavascriptopuspythonsastsecuritysecurity-analysissecurity-toolstaint-analysistypescriptvulnerability-scanners
  Language:Python 382

• BytecodeDL / ByteCodeDL

  A declarative static analysis tool for jvm bytecode based Datalog like CodeQL

  static-analysissecurity-toolssastpoints-to-analysistaint-analysis
  Language:Shell 343

• wmkhoo / taintgrind

  A taint-tracking plugin for the Valgrind memory checking tool

  valgrindctaint-analysis
  Language:C 262

• AngoraFuzzer / libdft64

  libdft for Intel Pin 3.x and 64 bit platform. (Dynamic taint tracking, taint analysis)

  securitytaint-analysisfuzzingdynamic-analysistaintlibdfttaint-trackingangora
  Language:C++ 261

• Feysh-Group / corax-community

  Corax for Java: A general static analysis framework for java code checking.

  abstract-interpretationcode-analysiscweflowdroidjavaowaspprogram-analysissarifsastsecuritysecurity-auditsoftware-analysissootstatic-analysisstatic-code-analysistaint-analysisvulnerability
  Language:Kotlin 253

• SVF-tools / Software-Analysis-Studio

  Teaching and Learning Software Analysis via SVF

  courseinformation-flowpoints-to-analysissoftware-analysisstatic-analysistaint-analysis
  Language:C++ 211

• fdu-sec / NestFuzz

  A structure-aware grey box fuzzer based on modeling the input processing logic.

  fuzzingstructure-aware-fuzzingtaint-analysis
  Language:C++ 171

• GlacierW / MBA

  Malware Behavior Analyzer

  malwareqemusandboxvirtual-machine-introspectionforensicstaint-analysisprogram-analysisdynamic-binary-analysis
  Language:C 159

• antgroup / YASA-Engine

  YASA is an open-source static program analysis project. Its core innovation lies in a unified intermediate representation called UAST, designed to support multiple programming languages. Built on top of UAST, YASA provides a highly accurate static analysis framework.

  program-analysissecuritytaint-analysisantgroupsast
  Language:TypeScript 154

• OSUSecLab / TaintMini

  Detecting Flow of Sensitive Data in Mini-Programs with Static Taint Analysis

  mini-programstaint-analysisempirical-studyprivacy-leakagesecurity
  Language:Python 80

• feliam / klee-taint

  KLEE-TAINT - Klee with taint analysis support

  symbolic-executiontaint-analysiskleellvm
  Language:C++ 70

• nuprl / augur

  Performant taint analysis for Node.js

  graaljsjavascriptnodejsnodeproftaint-analysis
  Language:JavaScript 55

• antgroup / YASA-UAST

  YASA-UAST is an intermediate representation structure for multi-language program analysis. The UAST-Parser parses code from different programming languages into a unified abstract syntax format.

  antgroupprogram-analysissecuritytaint-analysis
  Language:TypeScript 52

• AntoineBlaud / TheCodexRebirth

  Taint Analysis Engine and Trace Exploration : Overcome Obfuscation

  idallvmobfuscationtaint-analysistracereverse-engineering
  Language:Python 47

• akwick / gotcha

  Go Taint CHeck Analyser

  golangstatic-analysistaint-analysisstatic-code-analysisdataflowgotcha
  Language:Go 43

• decaf-project / Droidscope

  A dynamic analysis platform for Android

  androiddynamic-analysistaint-analysis
  Language:C++ 43

• brainsmoke / minemu

  Minemu is a minimal emulator for dynamic taint analysis ( this is a mirror of https://minemu.org/code/minemu.git )

  securitydata-flow-trackertaint-analysisjit-compilermitigationdynamic-analysisx86
  Language:C 42

• vanhauser-thc / dynTaintTracer

  a taint tracer based on DynamoRIO, currently ARM only

  taint-analysistaint-trackingtaintingtaintdynamoriodynamorio-clientreverse-engineeringarm
  Language:C 40

• cokeBeer / goot

  a dataflow analysis framework implemented in Go, like soot

  analysis-frameworkgostatic-analysistaint-analysistaint-trackingvulnerability-detection
  Language:Go 36

• Colton1skees / WinTTD

  Reverse engineered API for Microsoft's Time Travel Debugger

  dynamic-analysisbinary-instrumentationtaint-analysisreverse-engineeringbinary-analysisprogram-analysis
  Language:C++ 35

• Dynamic-Rabbits / Taint-Evaluator

  A suite of experiments for evaluating open-source binary taint trackers.

  taint-analysisbinary-analysisevaluation-frameworkbenchmarkstaint-tracking
  Language:Shell 32

• teambi0s / secREtary

  The Reverse Engineering Assistant of your dreams

  reverse-engineeringretaint-analysis
  Language:C++ 31

• agustingianni / instrumentation

  Assorted pintools

  instrumentationpintoolpindynamicbinarytaint-analysistaintcoveragecode-coveragebinary-analysisprogram-analysis
  Language:C++ 30