taint-analysis

Performant type-checking for python.

A static analysis tool for finding errors in PHP applications

Triton is a dynamic binary analysis library. Build your own program analysis tools, automate your reverse engineering, perform software verification or just emulate code.

A Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Applications

The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)

Binary Analysis Platform

Binary code static analyser, with IDA integration. Performs value and taint analysis, type reconstruction, use-after-free and double-free detection

Angora is a mutation-based fuzzer. The main goal of Angora is to increase branch coverage by solving path constraints without symbolic execution.

DECAF (short for Dynamic Executable Code Analysis Framework) is a binary analysis platform based on QEMU. This is also the home of the DroidScope dynamic Android malware analysis platform. DroidScope is now an extension to DECAF.

Playing with the Tigress software protection. Break some of its protections and solve their reverse engineering challenges. Automatic deobfuscation using symbolic execution, taint analysis and LLVM.

An LLVM-based instrumentation tool for universal taint tracking, dataflow analysis, and tracing.

A taint-tracking plugin for the Valgrind memory checking tool

A declarative static analysis tool for jvm bytecode based Datalog like CodeQL

libdft for Intel Pin 3.x and 64 bit platform. (Dynamic taint tracking, taint analysis)

Malware Behavior Analyzer

Teaching and Learning Software Analysis via SVF

Python source code auditing and static analysis on a large scale

KLEE-TAINT - Klee with taint analysis support

Go Taint CHeck Analyser

Minemu is a minimal emulator for dynamic taint analysis ( this is a mirror of https://minemu.org/code/minemu.git )