Comments (4)
Hi Lukas, Securify v2 analyzes Solidity source code, not EVM bytecode. Of course, one can build a tool that analyzes EVM bytecode (in fact, Securify v1 analyzes bytecode: https://github.com/eth-sri/securify). You to either decompile the bytecode to Solidity and then try Securify v2, or use Securify v1.
Petar
from securify2.
OK, thank you.
Does this mean that Securify v2 also does not analyse byte-code internally? Is the core logic much different to Securify v1? And if so, is there a documentation or paper which explains how Securify v2 works?
from securify2.
Does this mean that Securify v2 also does not analyse byte-code internally?
Yes.
Is the core logic much different to Securify v1?
Yes.
And if so, is there a documentation or paper which explains how Securify v2 works?
For the intermediate representation of Securify v2, you can check out this thesis: https://www.research-collection.ethz.ch/bitstream/handle/20.500.11850/343039/1/Vogel_Frederic.pdf
The documentation for the static analysis is currently not available.
from securify2.
OK, thank you!
from securify2.
Related Issues (20)
- Does the docker version of securify2 only support the analysis of contracts developed with solidity 0.5.12 HOT 3
- securify.staticanalysis.souffle.exceptions.SouffleError: Error during souffle execution: HOT 3
- securify.staticanalysis.souffle.exceptions.SouffleError: Error during souffle execution HOT 3
- The range of pragma versions it currently supports? HOT 3
- [Docker] securify.staticanalysis.souffle.exceptions.SouffleError: Error during souffle execution
- I am running "docker build -t securify" command on windows. But I am getting error. HOT 2
- I can't use Securify. ERROR: No such file or directory: 'souffle'. I have installed souffle and all other dependencies. Can anyone help?
- ErrorDefinition not found in grammer
- When does it support 0.8 0 version?
- When I use security --list the following error occurred HOT 1
- Error on check sol with docker
- error that tells "File not found"
- Error during testContract.sol analyzing
- Got KeyError: StateVariableLoad when analyzing contracts
- Securify Grammar Error HOT 1
- Need reformations and cleaning of the code
- Error: Atom's argument type is not a subtype of its declared type HOT 3
- Use Local Memory Type Variable Instead of Global Storage Type Variable in Event to Save Gas
- Question: Is the tool unable to analyze bytecode?
- is this project dead? only support solidity <= 6.0? HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from securify2.