Skip to content

vvasylkovskyi/SW-Security-Static-Analysis-Tool

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

40 Commits
lectures
lectures
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
clean_ast_visitor.py
clean_ast_visitor.py
 
 
constraints_pf_sensitivity_visitor.py
constraints_pf_sensitivity_visitor.py
 
 
constraints_resolver.py
constraints_resolver.py
 
 
constraints_visitor.py
constraints_visitor.py
 
 
generate_visitors.py
generate_visitors.py
 
 
instantiation_visitor.py
instantiation_visitor.py
 
 
pointers_visitor.py
pointers_visitor.py
 
 
ps_visitor.py
ps_visitor.py
 
 
ran.txt
ran.txt
 
 
sanitizer_visitor.py
sanitizer_visitor.py
 
 
scoped_ssa_visitor.py
scoped_ssa_visitor.py
 
 
slices.zip
slices.zip
 
 
src_visitor.py
src_visitor.py
 
 
ssa_src_visitor.py
ssa_src_visitor.py
 
 
ssa_visitor.py
ssa_visitor.py
 
 
test.py
test.py
 
 
tf_analyser.py
tf_analyser.py
 
 
tf_src_visitor.py
tf_src_visitor.py
 
 
tf_ssa_src_visitor.py
tf_ssa_src_visitor.py
 
 
tf_ssa_visitor.py
tf_ssa_visitor.py
 
 
tf_visitor.py
tf_visitor.py
 
 
utilities.py
utilities.py
 
 
visitors.py
visitors.py
 
 

Repository files navigation

SW-Security-Static-Analysis-Tool

A tool for static (tainted flows?) analysis of software vulnerability

python3 tf_analyser.py -h

###Start by extracting the archive provided by the teachers

python3 test.py --extract

python3 test.py --help

usage: test.py [-h] [--extract] [--pprint_asts] [--pprint_outputs] [--pprint_patterns] [--tests TESTS [TESTS ...]]

optional arguments: -h, --help show this help message and exit

--extract flag to extract slices from zip archive

--pprint_asts pretty print abstract syntax trees

--pprint_outputs pretty print output objects

--pprint_patterns pretty print patterns objects

--tests TESTS [TESTS ...] expression to id tests (example 1a 2)

To generate a visitor pattern skeleton

python3 generate_visitors.py tf_visitor slices/*.py.json --framework

To check current state of development of the solution

python3 test.py | less

Note that the representation of the constraint is a string but the constraint itself is a tuple of 5 elements consisting of a line number and two pairs of type qualifiers and ids

About

A tool for static analysis of software vulnerability

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages