GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → ExpoSEJS → Expose

ExpoSEJS / Expose

Licence: mit
A Dynamic Symbolic Execution (DSE) engine for JavaScript. ExpoSE is highly scalable, compatible with recent JavaScript standards, and supports symbolic modelling of strings and regular expressions.

Programming Languages

javascript
184084 projects - #8 most used programming language

Labels

unit-testingprogram-analysissymbolic-execution

Projects that are alternatives of or similar to Expose

Symbolic Execution
History of symbolic execution (as well as SAT/SMT solving, fuzzing, and taint data tracking)
Stars: ✭ 395 (+320.21%)
Mutual labels:  program-analysis, symbolic-execution
Mythril
Security analysis tool for EVM bytecode. Supports smart contracts built for Ethereum, Hedera, Quorum, Vechain, Roostock, Tron and other EVM-compatible blockchains.
Stars: ✭ 1,968 (+1993.62%)
Mutual labels:  program-analysis, symbolic-execution
Bap
Binary Analysis Platform
Stars: ✭ 1,385 (+1373.4%)
Mutual labels:  program-analysis, symbolic-execution
Manticore
Symbolic execution tool
Stars: ✭ 2,599 (+2664.89%)
Mutual labels:  program-analysis, symbolic-execution
surveyor
A symbolic debugger for C/C++ (via LLVM), machine code, and JVM programs
Stars: ✭ 14 (-85.11%)
Mutual labels:  symbolic-execution, program-analysis
UTBotCpp
Tool that generates unit test by C/C++ source code, trying to reach all branches and maximize code coverage
Stars: ✭ 59 (-37.23%)
Mutual labels:  unit-testing, symbolic-execution
Triton
Triton is a Dynamic Binary Analysis (DBA) framework. It provides internal components like a Dynamic Symbolic Execution (DSE) engine, a dynamic taint engine, AST representations of the x86, x86-64, ARM32 and AArch64 Instructions Set Architecture (ISA), SMT simplification passes, an SMT solver interface and, the last but not least, Python bindings.
Stars: ✭ 1,934 (+1957.45%)
Mutual labels:  program-analysis, symbolic-execution
binary-decompilation
Extracting high level semantic information from binary code
Stars: ✭ 55 (-41.49%)
Mutual labels:  symbolic-execution, program-analysis
Deepstate
A unit test-like interface for fuzzing and symbolic execution
Stars: ✭ 603 (+541.49%)
Mutual labels:  symbolic-execution, unit-testing
Aspnetcorespa
Asp.Net 5.0 & Angular 11 SPA Fullstack application with plenty of examples. Live demo:
Stars: ✭ 1,211 (+1188.3%)
Mutual labels:  unit-testing
Testing Workshop
A workshop for learning how to test JavaScript applications
Stars: ✭ 1,276 (+1257.45%)
Mutual labels:  unit-testing
Etheno
Simplify Ethereum security analysis and testing
Stars: ✭ 77 (-18.09%)
Mutual labels:  symbolic-execution
Semaphore Ng2 Webpack
Stars: ✭ 81 (-13.83%)
Mutual labels:  unit-testing
Rubberduck
Every programmer needs a rubberduck. COM add-in for the VBA & VB6 IDE (VBE).
Stars: ✭ 1,287 (+1269.15%)
Mutual labels:  unit-testing
Go Script Bash
Framework for writing modular, discoverable, testable Bash scripts
Stars: ✭ 77 (-18.09%)
Mutual labels:  unit-testing
Phpunit Json Assert
PHPUnit assertions for JSON documents
Stars: ✭ 90 (-4.26%)
Mutual labels:  unit-testing
Tcunit
An unit testing framework for Beckhoff's TwinCAT 3
Stars: ✭ 74 (-21.28%)
Mutual labels:  unit-testing
Sinon
Test spies, stubs and mocks for JavaScript.
Stars: ✭ 8,828 (+9291.49%)
Mutual labels:  unit-testing
Vue Test
🏁 DEPRECATED: Component testing for Vue.js
Stars: ✭ 92 (-2.13%)
Mutual labels:  unit-testing
Saul
Experimental annotation-based javascript unit tests 🚀
Stars: ✭ 90 (-4.26%)
Mutual labels:  unit-testing
View All Similar Projects ➔

ExpoSE

ExpoSE is a dynamic symbolic execution engine for JavaScript, developed at Royal Holloway, University of London by Blake Loring, Duncan Mitchell, and Johannes Kinder (now at Bundeswehr University Munich). ExpoSE supports symbolic execution of Node.js programs and JavaScript in the browser. ExpoSE is based on Jalangi2 and the Z3 SMT solver.

Requirements

Requires node version v10.12.0 (other versions may work but are not tested), npm, clang (with clang++), gnuplot (for coverage graphs), make, python2 (as python in path). On Ubuntu, since python2 has been removed by default I found that you may need to install python3-distutils.

mitmproxy (Depends libxml2-dev, libxslt-dev, libssl-dev) is required for electron analysis.

Installation

Execute npm install inside the ExpoSE directory for a clean installation.

ExpoSE GUI

In most cases you want to start by running the ExpoSE dashboard. The GUI provides detailed test case information, easy replay, and coverage graphs. Start the ExpoSE dashboard with

$ npm start

ExpoSE CLI

Alternatively, you can invoke ExpoSE directly via the expoSE command line interface.

Example:

$ expoSE ./tests/numbers/infoflow

Valid Options:

  • replay - Replay a test case with a specific input.
  • ahg - Automatically generate a generic test harness for a specified NPM library.

ExpoSE Browser Support

There is limited support for symbolic execution of webpages through a custom Electron based web browser. To execute ExpoSE on a website you use the same arguments as the CLI. Note: This also requires python3 and a modern version of mitmproxy to function correctly.

$ expoSE "https://google.com"

Configuration

ExpoSE is configured via environment variables. All work both with the ExpoSE GUI and ExpoSE CLI. Typically these can be set from a terminal by writing a command such as

$ EXPOSE_LOG_LEVEL=1 expoSE target/hello.js
  • EXPOSE_MAX_TIME - The time (in milliseconds) to limit the total execution
  • EXPOSE_TEST_TIMEOUT - The time (in milliseconds) a test case can run for before being timed out
  • EXPOSE_PRINT_COVERAGE - Print out the files checked by an analysis and show the lines which where explored by the analyzer
  • EXPOSE_PRINT_PATHS - Print the output of each test case to stdout
  • EXPOSE_LOG_LEVEL - Level from 0 (None) to 3 (High)
  • EXPOSE_MAX_CONCURRENT - The maximum number of test cases that can run concurrently
  • RECOMPILE - Force ExpoSE to rebuild before executing scripts

NOTE: To improve performance logging instructions are removed from the output at compile time and so will not be updated if NO_COMPILE is set.

Publications

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].