-
Hey,
I am currently testing out Psalm's taint analysis feature. While testing it on some WordPress Plugins with known vulnerabilities I've seen that depending on the way the _POST array is accessed…
-
Hi,
I have some questions about using your tool for taint analysis. I want to annotate all function arguments (user inputs) as sources, and annotate left operands of add/sub/mul operations in LLVM …
-
Design and create a taint analysis library on top of vast. It should be inter translation unit analysis.
We need to design API to query the user for possible points in other translation units.
-
It would be good if our taint analysis tutorial also had a nice documentation page like the signs tutorial has. It is currently very difficult to solve individually without a Goblint developer's instr…
-
*Describe your idea:* It would be beneficial to have some sort of static taint analysis with a forward/backward propagation
Examples of feature impl :-
https://oversecured.com
https://github.co…
-
For side-channel _verification_, the taint analysis considers both data and control dependencies. However, by linearizing secret-dependent branches we remove control dependencies, so our taint analysi…
-
[tags]binaries,reverse-engineering[/tags]
[short_descr]A dynamic binary analysis library.[/short_descr]
[link] https://triton-library.github.io [/link]
[link] https://github.com/JonathanSalwan/Triton…
-
Is there a taint analysis tool for open-source application which can analyze source code of application
-
Hi,
I am trying to use FlowDroid to do taint analysis of Android apps. While the tool can easily provide taint paths of APIs already present in the `SourcesAndSinks.txt` file, it does not provide a…
-
I've been able to strip the example required to exercise the problem down to about 20 very basic lines in [this ZIP file](https://github.com/vimeo/psalm/files/8993961/test.zip). To reproduce...
1. U…