yijiangtian

Pinned Repositories

Benchmark
OWASP Benchmark is a test suite designed to verify the speed and accuracy of software vulnerability detection tools. A fully runnable web app written in Java, it supports analysis by Static (SAST), Dynamic (DAST), and Runtime (IAST) tools that support Java. The idea is that since it is fully runnable and all the vulnerabilities are actually exploitable, it’s a fair test for any kind of vulnerability detection tool. For more details on this project, please see the OWASP Benchmark Project home page.
Language:Java1 2 00
ck
Code metrics for Java code by means of static analysis
Language:Java1 2 00
CWE-Juliet-TestSuite-Java
The Juliet Test Suite V1.3 (find the source https://samate.nist.gov/SRD/testsuite.php )
Language:Java1 2 00
Docker
Docker 部署各类应用
Language:TSQL1 2 00
GDS-PMD-Security-Rules
Custom security ruleset for the popular Java static analysis tool PMD.
Language:Java1 2 00
infer
A static analyzer for Java, C, C++, and Objective-C
Language:OCaml2 3 00
JMetrics
A Java static analysis tool to help measure code quality.
Language:Java1 2 00
jpf-symbc
Symbolic PathFinder
Language:Java1 2 00
maple-ir
Industrial IR-based static analysis framework for Java bytecode
Language:Java1 2 00
pvs-studio-check-list
Offer an interesting project for PVS-Studio analysis.
1 2 00

yijiangtian's Repositories

yijiangtian/GDS-PMD-Security-Rules
Custom security ruleset for the popular Java static analysis tool PMD.
Language:Java1 2 00
yijiangtian/toif
The Tool Output Integration Framework (TOIF) is a powerful composite vulnerability detection platform.
Language:Java1
yijiangtian/concolic-walk
Implementation and evaluation data of the Concolic Walk heuristic for solving complex arithmetic path conditions.
yijiangtian/hopper
Goal-directed static analysis tool for JVM languages.
yijiangtian/jconstraints
A constraint solver abstraction layer for Java
Language:Java2 0
yijiangtian/jcute
concolic execution engin
yijiangtian/joogie
Joogie version used in the termination competition 2015.
Language:Java1 0
yijiangtian/keshmesh
Keshmesh is a static analysis tool for finding and fixing concurrency bug patterns in Java.
Language:Java2 0
yijiangtian/soot-infoflow-android-iccta
Inter-component communication Taint Analysis for Android
Language:Java1 0
yijiangtian/squale
Language:Java3 02
yijiangtian/taint-analysis
Static analysis to detect taint in java programs
Language:Java1 0
yijiangtian/TaintAnalysis
Interprocedural Taint Analysis using SOOT
yijiangtian/thresher
Static heap reachability analysis for Java bytecode and Android memory leak finder.
Language:Java2 0