This directory provides the TypeScript implementation of dynamic taint analysis.
The dynamic taint analysis is implemented through the composition of a few pieces:
- Graal, the multi-language VM
- NodeProf, which runs on top of Graal
analysis/nodeprofAnalysis.ts, which acts as a driver that initializes our analysis with NodeProfanalysis/analysis.ts, which receives the NodeProf callbacks and translates them into instructions for anAbstractMachineAbstractMachine, which accepts abstract machine instructions and processes them. See here for more information, and here for its type definition.