Awesome
Here is a curated list of weggli queries
You can read them and use them one by one, or launch them by batch:
Usage:
$ bash dangerous_functions.qry code.c
$ bash malloc_overflow.qry -e cc sourcedir/
There is threee categories:
- dangerous functions: such as strcpy, system, etc..
- stack : tries to detect copies on stack, on other things..
- malloc : finding overflows in malloc functions
They are autodocumented, you can read them.