Open Position

DIVINA - CMU/TIC/0053/2021 - BI|2022/333

Type of Position: Research Fellowship (Bolsa de Investigação)

Type of Contract: Research grant

Duration: 5 Months

Closed at: 2022-Nov-16


The student will join the project DIVINA, Detecting Injection Vulnerabilities in Node.js Applications, in the scope of its first and second tasks, whose main goal is to build a new symbolic execution engine with support for latest version of the JavaScript standard. The student will develop a new symbolic execution engine for the ECMA-SL language, a new intermediate language for analyzing JavaScript applications. The student will combine the ECMA-SL symbolic execution engine with an existing compiler from JavaScript to ECMA-SL in order to obtain a symbolic execution engine for JavaScript. The student will demonstrate the applicability of the developed symbolic execution engine by applying it to the detection of injection vulnerabilities in small Node.js applications obtained from the Vulcan dataset.


José Faustino Fragoso Femenin dos Santos



Phone Number: