Quick Start • Official Documentation • Feedback • API Reference • Contributing Code • Community • Project Architecture
📖Language selection: English • 中文
CDSL: Cybersecurity Domain Specific Language, a programming language specifically designed for the field of cybersecurity.
The Yaklang team integrated the concept of "Domain Specific Language" and built the concept of CDSL, which serves as the core of the Yak (also known as Yaklang) language for developing infrastructure and language ecosystem.
Yak is an advanced computer programming language specifically developed for the field of cybersecurity, with a focus on being easy to write and distribute. It combines the features of strong typing, dynamic typing, and supports both compiled bytecode and interpreted execution at runtime.
The runtime environment of the Yak language relies solely on YakVM, enabling the "write once, run anywhere" feature. As long as there is a deployment of YakVM, Yak language programs can be executed quickly in any environment.
The Yak language initially existed as an "embedded language" within a host program. However, under the academic guidance of the School of Cyberspace Security at the University of Electronic Science and Technology of China, the Yaklang.io development team spent two years iterating and transforming the language. They successfully developed the YakVM virtual machine, allowing the language to run independently without relying on a host language. In 2023, Yak was fully open-sourced. It supports mainstream operating systems such as macOS, Linux, and Windows.
The Yak programming language, built based on the CDSL concept in the field of network security, encompasses almost all the advantages of DSL. It is designed as a specialized programming language for the development of security capabilities, implementing most common security functionalities, and enabling various security capabilities to complement, merge, and evolve with each other. This language aims to enhance the productivity of security professionals.
CDSL offers several advantages in the field of network security:
-
Simplicity: Building security products using CDSL allows for a better separation of business logic and capabilities, resulting in more intuitive solutions.
-
Usability: Even non-specialists can use CDSL to construct security products, avoiding information gaps that may arise during the engineering of security products.
-
Flexibility: CDSL is designed to be used either as a standalone language or in embedded systems. Users can write DSL scripts based on their specific needs to implement specific strategies and detection rules. This often allows users to showcase their thought processes without being constrained by extraneous knowledge.
In addition, as a programming language specifically designed for network security development, Yak language provides many special features to help users quickly build network security applications:
-
Man-in-the-middle interception of library functions.
-
Advanced port scanning and service fingerprinting capabilities.
-
Encryption and decryption libraries for network security.
-
Support for China's commercial cryptographic systems, including the SM2 elliptic curve public key cryptographic algorithm, SM4 block cipher algorithm, SM3 cryptographic hash algorithm, and more.
Yakit (https://github.com/yaklang/yakit) is the official open source Yaklang IDE released by the Yaklang.io team. It can help you get started with the Yaklang language quickly.
At the same time, Yakit can also visualize most of the core functions needed by security engineers. It is free, you can start using Yaklang by [downloading and installing Yakit] (https://www.yaklang.com/products/download_and_install).
You can visit the official documentation of Yakit for more information.
Install and use Yaklang via the command line, please follow: https://www.yaklang.com/ or https://www.yaklang.io/, or directly execute
bash <(curl -sS -L http://oss.yaklang.io/install-latest-yak.sh)
powershell (new-object System.Net.WebClient).DownloadFile('https://yaklang.oss-cn-beijing.aliyuncs.com/yak/latest/yak_windows_amd64.exe','yak_windows_amd64.exe') && yak_windows_amd64.exe install && del /f yak_windows_amd64.exe
- You can add the topics you want to discuss or express in Yaklang or Yakit's issues, in either English or Chinese, and we will reply as soon as possible.
- Chinese users can join the group through WeChat.
- International users can join the community through Discord.
This is an advanced topic. Before contributing your code, make sure you have an understanding of the entire Yaklang project structure.
When contributing code, if you want to modify the core syntax part of Yaklang or YakVM itself, it is best to contact the R&D team.
If you just want to add functionality to the library, or fix some bugs in the library, then you can submit a PR directly. Of course, the PR should preferably include the corresponding unit test, which is very helpful to improve our code quality.
v1ll4n: Yak Project Maintainer.
The code version in this repository uses the AGPL open source license, which is a strict open source license and is infectious. If you use the code in this repository, your code must also be open source.
- Mandatory open source network services: Requires the source code of network services to be open source. Ensures the practice of open source philosophy in network environments.
- Other terms are the same as GPL: open source free, open source modification, derived open source, etc.
This open source repository should only be used for personal open source and learning.
This project is supervised by Professor Xiaosong Zhang from the University of Electronic Science and Technology of China (UESTC) and the School of Cybersecurity (SCSE).
- Alonzo Church, "A set of postulates for the foundation of logic", Annals of Mathematics, 33(2), 346-366, 1932.
- Dana Scott, Christopher Strachey, "Toward a mathematical semantics for computer languages", Proceedings of the Symposium on Computers and Automata, Microwave Research Institute Symposia Series Vol. 21, New York, 1971.
- Henk Barendregt, Wil Dekkers, Richard Statman, lambda Calculus with Types, Perspectives in Logic. Cambridge University Press, 2013.
- Braun, M., Buchwald, S., Hack, S., Leißa, R., Mallon, C., Zwinkau, A. (2013). Simple and Efficient Construction of Static Single Assignment Form. In: Jhala, R., De Bosschere, K. (eds) Compiler Construction. CC 2013. Lecture Notes in Computer Science, vol 7791. Springer, Berlin, Heidelberg.
- Terence Parr, "The Definitive ANTLR 4 Reference", Pragmatic Bookshelf, 2013.
- Terence Parr, "Simplifying Complex Networks Using Temporal Pattern Mining: The Case of AT&T's Observed Data Network", Dissertation, 1995.
- Terence Parr, Russell Quong, "ANTLR: A Predicated-LL(k) Parser Generator", Journal of Software Practice and Experience, July 1995.
- Google Ins, "Protocol Buffers", https://developers.google.com/protocol-buffers, 2020.
- Google Ins, "gRPC", https://grpc.io/, 2020.
- Microsoft Ins, "Monaco Editor", https://microsoft.github.io/monaco-editor/, 2020.