An LLVM-based instrumentation tool for universal taint tracking, dataflow analysis, and tracing.
-
Updated
Jun 10, 2026 - C++
An LLVM-based instrumentation tool for universal taint tracking, dataflow analysis, and tracing.
libdft for Intel Pin 3.x and 64 bit platform. (Dynamic taint tracking, taint analysis)
Cyclops 是一款具有 XSS 检测功能的浏览器
Defense-in-depth security toolkit for LLM agents — taint tracking, proxy secret guard, policy engine, and red-team benchmarking
a taint tracer based on DynamoRIO, currently ARM only
a dataflow analysis framework implemented in Go, like soot
A suite of experiments for evaluating open-source binary taint trackers.
FLOWMATRIX: GPU-Assisted Information-Flow Analysis through Matrix-Based Representation, USENIX Security'22
WhiteRabbitTracker: Analyzing malware evasions with information flow tracking
A closed-loop security runtime preventing "The Great Exfiltration" and Indirect Prompt Injection in Autonomous AI Agents.
JSFlow is a security-enhanced JavaScript interpreter for fine-grained tracking of information flow.
Three packages: @kernel.chat/agent-os (POSIX for AI agents — capabilities, namespaces, quotas, taint, audit, vault, outcomes), @kernel.chat/kbot (terminal AI agent, MCP-native, BYOK), @kernel.chat/kbot-finance (audit-grade AI for regulated industries). Provenance-engineering substrate.
A prototype of an Interactive Application Security Testing System
Ricerca's PolyTracker (Forked from https://github.com/trailofbits/polytracker )
Signed provenance labels and taint-tracking policy for LLM agent security. The core library behind AgentMesh.
Dynamic Taint Analysis for Web Storage
The Security Kernel for AI Agents — MCP/A2A gateway with policy enforcement, taint tracking, sandboxed execution, deterministic envelopes, and Sigstore audit. OWASP ASI 2026 compliant.
Experiment harness: how agent-memory compaction corrupts provenance-based gate decisions. Backs Part 5 of the typed-provenance series.
Provenance-gated tool calls for AI agents. A local YAML+CEL policy gates each tool call on the provenance of its arguments. Deterministic, in-process, no model.
webxml is a web config visualization tool used to find mis-configuration on servlet endpoint
Add a description, image, and links to the taint-tracking topic page so that developers can more easily learn about it.
To associate your repository with the taint-tracking topic, visit your repo's landing page and select "manage topics."