{"id":13717411,"url":"https://github.com/mandiant/route-sixty-sink","last_synced_at":"2025-05-07T07:31:26.081Z","repository":{"id":43267581,"uuid":"506050672","full_name":"mandiant/route-sixty-sink","owner":"mandiant","description":"Link sources to sinks in C# applications.","archived":true,"fork":false,"pushed_at":"2023-04-10T00:53:41.000Z","size":2831,"stargazers_count":139,"open_issues_count":1,"forks_count":13,"subscribers_count":4,"default_branch":"master","last_synced_at":"2024-08-04T00:13:20.424Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"https://www.mandiant.com/resources/route-sixty-sink-launch","language":"C#","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/mandiant.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE.md","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2022-06-22T00:55:00.000Z","updated_at":"2024-07-16T00:43:10.000Z","dependencies_parsed_at":"2022-07-09T07:16:39.012Z","dependency_job_id":null,"html_url":"https://github.com/mandiant/route-sixty-sink","commit_stats":null,"previous_names":[],"tags_count":1,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/mandiant%2Froute-sixty-sink","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/mandiant%2Froute-sixty-sink/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/mandiant%2Froute-sixty-sink/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/mandiant%2Froute-sixty-sink/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/mandiant","download_url":"https://codeload.github.com/mandiant/route-sixty-sink/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":224573523,"owners_count":17333804,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-08-03T00:01:21.851Z","updated_at":"2024-11-14T05:31:39.732Z","avatar_url":"https://github.com/mandiant.png","language":"C#","funding_links":[],"categories":["Static Application Security Testing (SAST)"],"sub_categories":["Metadata Tools"],"readme":"\u003cdiv align=\"center\"\u003e\n\u003cimg src=\"./R6sLogo.png\" height=\"300\"\u003e\n\u003c/div\u003e\n\n# ✏️ Contributors\n- Dillon Franke (@dillonfranke)\n- Michael Maturi (@a-marionette)\n\n# 📝 Blog \n[https://www.mandiant.com/resources/route-sixty-sink-launch](https://www.mandiant.com/resources/route-sixty-sink-launch)\n\n# ⚓ Route Sixty-Sink\n***Route Sixty-Sink*** is an open source tool that enables defenders and security researchers alike to quickly identify vulnerabilities in any .NET assembly using automated source-to-sink analysis.\n\nIdentifying vulnerabilities within application binaries or source code is often a long and tedious process. To help with this, **source-to-sink analysis** is a form of data flow analysis that attempts to identify user input that is passed as the argument of a dangerous function call (a “sink”).\n\nBy enumerating a list of sinks, identifying them within an application, and backtracking them to user-controlled input, source-to-sink analysis can identify high fidelity vulnerabilities.\n\n# ❓ What Does Route Sixty-Sink Solve?\n\nWhile effective, proper source-to-sink analysis is a time consuming and manual process that is often infeasible due:\n\n- **Complex Input Tracing:** Identifying an application’s inputs can be difficult, especially in web applications where MVC architectures are used. ***Route Sixty-Sink*** handles a wide variety of routing and input parsing scenarios to automate this process.\n- **Application Size:** Large C# applications quickly become infeasible to obtain full code coverage using manual analysis. ***Route Sixty-Sink*** automates this process to allow analysis of most programs within seconds.\n- **Nested Sinks:** Sinks may be overlooked that are hiding within interfaces, extended classes, or a series of nested function calls. ***Route Sixty-Sink*** identifies these sinks by creating a call graph of all classes and method calls and then recursively following them.\n\n# 💪  How Does it Work?\n\n***Route Sixty-Sink*** traces the flow of user input through any .NET assembly and determines whether it is passed as an argument to a dangerous function call (a “sink”). ***Route Sixty-Sink*** does this using two main modules:\n\n1. ***RouteFinder***, which enumerates API routes in ASP Net Core MVC and classic ASP page web applications.\n2. ***SinkFinder***, which takes an entry point and creates a call graph of all classes and method calls. Then, it queries strings, method calls, and class names for “sinks”.\n\nBy tying these two pieces of functionality together, ***Route Sixty-Sink*** quickly identifies high fidelity vulnerabilities that would be difficult to discover using black box or manual static analysis approaches.\n\n# ⛑️ Installation, Usage, and Examples\n\nFor usage see the [Wiki Page](https://github.com/mandiant/route-sixty-sink/wiki) page.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fmandiant%2Froute-sixty-sink","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fmandiant%2Froute-sixty-sink","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fmandiant%2Froute-sixty-sink/lists"}