CQual. A static analysis tool for finding security bugs in C programs.
Oink. A general framework for developing static analyses for C and C++. Includes many of CQual's features.
I am looking for an exceptional PhD student
interested in working on software or system security. If you think
you might be interested, please email me to make an appointment to
discuss possible projects.