GitHub

ashu3103/awesome-static-analysis

This repository lists static analysis tools for all programming languages, build tools, config files and more. The official website, analysis-tools.dev is based on this repository and adds rankings, ...
GitHub

Static code analysis

Static program analysis (or static analysis) is the analysis of computer programs performed without executing them, in contrast with dynamic program analysis, which is performed on programs during ...
IEEE

SSRFSeek: An LLM-based Static Analysis Framework for Detecting SSRF Vulnerabilities in PHP Applications

Abstract: Server-side request Forgery (SSRF) vulnerabilities pose significant security risks to web applications, and the attack surface for SSRF continues to expand with the widespread adoption of ...
IEEE

A Sanitizer-centric Analysis to Detect Cross-Site Scripting in PHP Programs

Abstract: A large number of PHP applications suffer from Cross-Site Scripting (XSS) attacks every year. Static taint analysis is a prevalent way to detect taint-style vulnerabilities like XSS. However ...