ITEA is the Eureka Cluster on software innovation
ITEA is the Eureka Cluster on software innovation
Please note that the ITEA Office will be closed from 25 December 2024 to 1 January 2025 inclusive.
ITEA 4 page header azure circular

CorCA - Correction of C/C++ Automatically

Project
17039 XIVT
Description
  • Identify BO and generate their exploits
  • Reduce the rate of false positives produced by static analysis
  • Produce fixes, repair the code, and validate the correctness and effectiveness of the fixes in an automated way
  • Achieves an accuracy and precision close to 100%
Contact
Ibéria Medeiros, FCUL: Faculty of Sciences of University of Lisboa
Email
ivmedeiros@fc.ul.pt
Technical features

Input(s):

  • C/C++ source code of a program to test

Main feature(s):

  • Identifies buffer overflows in C/C++ programs and confirm their existence
  • Removes BO by correcting the code and validate the corrections made
  • Generate a new release of the program

Output(s):

  • New version of the program without vulnerabilities
  • A report with the vulnerabilities found and fixed
Integration constraints
  • Python 3
  • AFL
  • Flawfinder
  • pycparser
Targeted customer(s)

Software developers, Software testers.

Conditions for reuse

Open-source restricted and permission required.

Confidentiality
Public
Publication date
02-02-2022
Involved partners
Faculty of Sciences of University of Lisbon (PRT)