PatchLeaks
PatchLeaks goes from a CVE number to the exact patched code and its vulnerability analysis. It compares two versions of a code-base, highlights lines changed by the vendor, and explains why they matter.
Description
PatchLeaks is a tool designed to analyze security patches for vulnerabilities identified by CVE numbers. Users feed the tool an old version and a patched version of a codebase, and it identifies the security fix, providing a detailed description to validate or weaponize the patch quickly.
The tool supports multiple programming languages such as PHP, JavaScript, and Python, allowing for targeted analysis based on the codebase in question. It runs as a server, binding to a specified host and port, and utilizes AI analysis with configurable thread counts for processing.
Ideal for security researchers, it spots changes made by vendors and explains their significance, making it easier to understand patch implications in real-world scenarios.
How It Works
PatchLeaks operates by comparing an old and patched version of a codebase to highlight vendor-changed lines. It identifies security fixes and generates detailed vulnerability analysis using AI, supporting specified languages like PHP, JavaScript, and Python. The tool runs a server on a bindable host and port, processing analysis with multiple threads.
Installation
sudo apt install patchleaksFlags
Examples
PatchLeaks -hpatchleaks -hPatchLeaks -host 127.0.0.1 -p 8080patchleaks -language php,javascriptPatchLeaks -t 4patchleaks -test-real-worldPatchLeaks -host 0.0.0.0 -p 3000 -language python