Static analysis of Python web applications based on theoretical foundations (Control flow graphs, fixed point, dataflow analysis) Detect command injection, SSRF, SQL injection, XSS, directory traveral etc. A lot of customization is possible. For functions from builtins or libraries, e.g. url_for or os.path.join, use the -m option to specify whether or not they return tainted values given tainted inputs, by default this file is used.

Features

  • Virtual env setup guide
  • Detect command injection, SSRF, SQL injection, XSS, directory traveral etc.
  • A lot of customization possible
  • A Static Analysis Tool for Detecting Security Vulnerabilities
  • Detect vulnerabilities in Python Web Applications
  • Static analysis of Python web applications based on theoretical foundations

Project Samples

Python Taint Screenshot 1

Project Activity

See All Activity >

Categories

Frameworks, Web Development

License

GNU General Public License version 3.0 (GPLv3)

Follow Python Taint

Python Taint Web Site

You Might Also Like
Top-Rated Free CRM Software Icon
Top-Rated Free CRM Software

216,000+ customers in over 135 countries grow their businesses with HubSpot

HubSpot is an AI-powered customer platform with all the software, integrations, and resources you need to connect your marketing, sales, and customer service. HubSpot's connected platform enables you to grow your business faster by focusing on what matters most: your customers.
Get started free
Rate This Project
Login To Rate This Project

User Reviews

Be the first to post a review of Python Taint!

Additional Project Details

Programming Language

Python

Related Categories

Python Frameworks, Python Web Development Software

Registered

2022-11-09
Report inappropriate content