CorCA - Correction of C/C++ Automatically
- Project
- 17039 XIVT
- Description
- Identify BO and generate their exploits
- Reduce the rate of false positives produced by static analysis
- Produce fixes, repair the code, and validate the correctness and effectiveness of the fixes in an automated way
- Achieves an accuracy and precision close to 100%
- Contact
- Ibéria Medeiros, FCUL: Faculty of Sciences of University of Lisboa
- ivmedeiros@fc.ul.pt
- Technical features
Input(s):
- C/C++ source code of a program to test
Main feature(s):
- Identifies buffer overflows in C/C++ programs and confirm their existence
- Removes BO by correcting the code and validate the corrections made
- Generate a new release of the program
Output(s):
- New version of the program without vulnerabilities
- A report with the vulnerabilities found and fixed
- Integration constraints
- Python 3
- AFL
- Flawfinder
- pycparser
- Targeted customer(s)
Software developers, Software testers.
- Conditions for reuse
Open-source restricted and permission required.
- Confidentiality
- Public
- Publication date
- 02-02-2022
- Involved partners
- Faculty of Sciences of University of Lisbon (PRT)