Riccardo Cardelli

For now Heappy can handle only 64-bit addresses but worked on the 32-bit version. Unfortunately, GEF is not able to show all allocated chunks through the command "heap chunks" for...

Hi @Sparrrgh, thank you for the attempt to contribute to this project. The rule you have proposed opens an interesting discussion about the MSTG-STORAGE-11. From the [OWASP documentation](https://github.com/OWASP/owasp-mastg/blob/v1.5.0/Document/0x05d-Testing-Data-Storage.md#testing-the-device-access-security-policy-mstg-storage-11), it is...

Hi Marco, I completely agree with your comments. Please let me know if you would like me to modify anything. Regarding the taint mode, I strongly suggest considering it, since...

Hi @rafaelhziliao, no, they have not yet updated with the proposed rules. If you want to use the rules collection I recommend you refer to the official repository.

I have exactly the same problem... Any update about it?

Hi! Could you please show me the result of the "which semgrep" command? It could be possible that semgrep is not inside the PATH environment variable in use by the...

Hi, I have pushed a solution right now on my repo: https://github.com/gand3lf/semgrepper Please could you check if this new solution works? Thank you, Riccardo Cardelli Il giorno ven 23 mag...

Sure! You can download the public semgrep rules in the official repository: - https://github.com/semgrep/semgrep-rules Then you can Import the rules in the "Rules Files" section. Please note that you can...

Do you have some updates about this proposal? I'm working on a project with my company about that will be publicly released and our biggest issue is the aforementioned. Moreover,...

Hi @IagoAbal, thank you for the answer. Currently, it is simple to implement a rule to check: ``` The target file does not use this protection. ``` but it is...