vulnerability-scanning
Installation
SKILL.md
Vulnerability Scanning
Static Application Security Testing (SAST)
SAST Overview
SAST analyzes source code, bytecode, or binaries without executing the application to identify security vulnerabilities.
SAST Techniques
- Pattern Matching: Match code against known vulnerability patterns
- Data Flow Analysis: Track data flow through the application to identify tainted data
- Control Flow Analysis: Analyze execution paths to identify potential issues
- Taint Analysis: Track user input through the application to identify injection points
- Semantic Analysis: Understand code semantics to identify complex vulnerabilities