SVF: interprocedural static value-flow analysis in LLVM
This paper presents SVF, a tool that enables scalable and precise interprocedural Static
Value-Flow analysis for C programs by leveraging recent advances in sparse analysis. SVF …
Value-Flow analysis for C programs by leveraging recent advances in sparse analysis. SVF …
Debloating software through {Piece-Wise} compilation and loading
Programs are bloated. Our study shows that only 5% of libc is used on average across the
Ubuntu Desktop envi-ronment (2016 programs); the heaviest user, vlc media player, only …
Ubuntu Desktop envi-ronment (2016 programs); the heaviest user, vlc media player, only …
[PDF][PDF] ScanDal: Static analyzer for detecting privacy leaks in android applications
Smartphone applications can steal users' private data and send it out behind their back. The
worldwide Android smartphone market is growing, which raises security and privacy …
worldwide Android smartphone market is growing, which raises security and privacy …
A survey of parametric static analysis
Understanding program behaviors is important to verify program properties or to optimize
programs. Static analysis is a widely used technique to approximate program behaviors via …
programs. Static analysis is a widely used technique to approximate program behaviors via …
Pinpoint: Fast and precise sparse value flow analysis for million lines of code
When dealing with millions of lines of code, we still cannot have the cake and eat it: sparse
value-flow analysis is powerful in checking source-sink problems, but existing work cannot …
value-flow analysis is powerful in checking source-sink problems, but existing work cannot …
[書籍][B] Introduction to static analysis: an abstract interpretation perspective
A self-contained introduction to abstract interpretation–based static analysis, an essential
resource for students, developers, and users. Static program analysis, or static analysis …
resource for students, developers, and users. Static program analysis, or static analysis …
NTFuzz: Enabling type-aware kernel fuzzing on windows with static binary analysis
Although it is common practice for kernel fuzzers to leverage type information of system
calls, current Windows kernel fuzzers do not follow the practice as most system calls are …
calls, current Windows kernel fuzzers do not follow the practice as most system calls are …
Tutorial on static inference of numeric invariants by abstract interpretation
A Miné - Foundations and Trends® in Programming …, 2017 - nowpublishers.com
Born in the late 70s, Abstract Interpretation has proven an effective method to construct static
analyzers. It has led to successful program analysis tools routinely used in avionic …
analyzers. It has led to successful program analysis tools routinely used in avionic …
HybriDroid: static analysis framework for Android hybrid applications
Mobile applications (apps) have long invaded the realm of desktop apps, and hybrid apps
become a promising solution for supporting multiple mobile platforms. Providing both …
become a promising solution for supporting multiple mobile platforms. Providing both …
On-demand strong update analysis via value-flow refinement
We present a new Strong UPdate Analysis for C programs, called Supa, that enables
computing points-to information on-demand via value-flow refinement, in environments with …
computing points-to information on-demand via value-flow refinement, in environments with …