RIVULET is a system for detecting code injection vulnerabilities in Java web applications by combining existing JUnit tests with dynamic taint tracking and input generation
Revealing Injection VUlnerabilities by Leveraging Existing Tests (RIVULET) RIVULET is a system for detecting code injection vulnerabilities in Java web applications by combining existing JUnit tests with dynamic taint tracking and input generation This repository contains the source code for RIVULET For more information about how RIVULET works, please refer to our ICSE 2020 p