Download
Joern is a platform for analyzing source code, bytecode, and binary executables. It generates code property graphs (CPGs), a graph representation of code for cross-language code analysis. Code property graphs are stored in a custom graph database. This allows code to be mined using search queries formulated in a Scala-based domain-specific query language. Joern is developed with the goal of providing a useful tool for vulnerability discovery and research in static program analysis.
Features
- Joern allows importing code even if a working build environment cannot be supplied or parts of the code are missing
- Joern creates semantic code property graphs from the fuzzy parser output and stores them in an in-memory graph database
- SCPGs are a language-agnostic intermediate representation of code designed for query-based code analysis
- Joern provides a taint-analysis engine that allows the propagation of attacker-controlled data in the code to be analyzed statically
- Joern offers a strongly-typed Scala-based extensible query language for code analysis based on Gremlin-Scala
- Code property graphs are multi-layered, offering information about code on different levels of abstraction
Project Samples
Categories
Source Code AnalysisLicense
Apache License V2.0Follow Joern
Other Useful Business Software
Discover the power of eDiscovery for law firms.
DWR eDiscovery allows legal professionals to process, analyze, review, and produce documents that are relevant to litigation and other legal disclosure obligations. Our tools allow easy ingestion and analysis of client and opposing party documents using a comprehensive set of document review features including AI search, keyword search, keyword highlighting, metadata filtering, marking documents, privilege log management, redactions, and a range of analysis tools to help users best understand their document corpus.
Rate This Project
Login To Rate This Project
User Reviews
Be the first to post a review of Joern!
