The Wayback Machine - https://web.archive.org/web/20201105044851/https://github.com/topics/taint-analysis
Skip to content
#

taint-analysis

Star

Here are 46 public repositories matching this topic...

Language: All
Filter by language
All 46 C++ 10 C 9 Java 4 JavaScript 4 OCaml 3 PHP 3 Python 2 Rust 2 TeX 2 C# 1
Sort: Best match
Sort options
Best match Most stars Fewest stars Most forks Fewest forks Recently updated Least recently updated

python-security / pyt

Star

JonathanSalwan / Triton

Star

Triton is a Dynamic Binary Analysis (DBA) framework. It provides internal components like a Dynamic Symbolic Execution (DSE) engine, a dynamic taint engine, AST representations of the x86, x86-64, ARM32 and AArch64 Instructions Set Architecture (ISA), SMT simplification passes, an SMT solver interface and, the last but not least, Python bindings.

reverse-engineering symbolic-execution binary-analysis instruction-semantics program-analysis taint-analysis smt binary-translation
  • Updated Nov 4, 2020
  • C++

find-sec-bugs / find-sec-bugs

Star
Open

Detect usage of Apache BeanUtils as dangerous

h3xstream
h3xstream commented Oct 5, 2020

Description

BeanUtils is a library that is doing automatic mapping to Java object.
It can cause arm when the attack controls part of the list of properties being sets. BeanUtils does not blacklist properties like class, classloader or other objects that are likely to load arbitrary classes and possibly run code.

Code

import org.apache.commons.beanutils.BeanUtils;

public
Read more
good first issue hacktoberfest
Find more good first issues

Improve this page

Add a description, image, and links to the taint-analysis topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the taint-analysis topic, visit your repo's landing page and select "manage topics."

Learn more

You can’t perform that action at this time.