Static Taint Analysis for JavaScript Programs

Almashfi, Nabil; Lu, Lunjin

doi:10.1007/978-3-030-71472-7_13

Cited by 1 publication

(1 citation statement)

References 14 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Static taint analysis techniques rely on the possible presence of contaminated data streams in the target object, mainly for weblike applications [1] [2] and Android [3][4] applications, as both target objects are characterised by a large number of user interactions, a large number of risk points brought about by complex components and the availability of part or all of the source code. The detection of Web-based applications is mainly for their scripting languages, such as PHP [5] and JavaScript [6]; the detection of Android applications aims at protect whether sensitive information [7] such as user privacy is stolen, for example, B-Droid [8] uses static taint analysis combined with fuzzy testing to IOP Publishing doi:10.1088/1742-6596/2258/1/012069 2 detect privacy leaks by analysing the tested application's behaviour to detect privacy leaks, which can effectively detect the five most popular types of commercial spyware in the market.…”

Section: Introductionmentioning

confidence: 99%

CSChecker : A binary taint-based vulnerability detection method based on static taint analysis

Guo

Wei

2022

J. Phys.: Conf. Ser.

View full text Add to dashboard Cite

Embedded devices such as routers not only bring convenience to people’s daily life, but also increase the attack surface and security risks of devices. Embedded device applications tend to be closed source and therefore cannot be searched for vulnerabilities through source code audits. Even open source applications can be insecure because they reference third-party libraries. Binary file vulnerability mining is an important means to solve this kind of problem, but it has the problems of path explosion and low efficiency. This article uses the static stain analysis with the method of combining the vulnerability characteristics, in the type of stain into classes and class assignment holes for testing. Based on function call graph, this paper uses atomic combinational optimization to detect the vulnerability of router firmware. The prototype tool -- CSChecker is implemented in D-Link, Tenda, the test was carried out on 267 firmware files of Netgear and other well-known brands, and the experimental results showed that the accuracy of CSChecker in the data set reached 92.51%, indicating that CSChecker could effectively search the injection vulnerabilities and assignment vulnerabilities of binary files.

show abstract