Skip to content

v0.6

Compare
Choose a tag to compare
@Enkelmann Enkelmann released this 13 Jun 05:48
· 142 commits to master since this release
5621a04

Version 0.6 contains improved abstract domains able to represent data more precise and more complete. Furthermore, the Pointer Inference analysis was reworked to be a bottom-up analysis and an additional function signature analysis step was added to the analysis pipeline. These improvements allow all analyses depending on the Pointer Inference to be both more precise and more complete.

Other highlights include:

  • A new command line flag for analyzing bare-metal binaries.
  • The check for CWE-78: Command line injections was completely rewritten using abstract domains for strings.
  • The check for CWE-119: Buffer Overflow was completely rewritten and now emits additional data flow information in the JSON output to help with root cause analysis.
  • The check for CWE-416: Use After Free was completely rewritten and now emits additional data flow information in the JSON output to help with root cause analysis.

See the CHANGES.md for more details.