Be specific. Which analyzer are you talking about and which specific targets are you saying they were successful at?
Intrinsa's PREfix static source code analyzer would model the execution of the C/C++ code to determine values which would cause a fault.
IIRC they were using a C/C++ compiler front end from EDG to parse C/C++ code to a form they used for the simulation/analysis.
see https://web.eecs.umich.edu/~weimerw/2006-655/reading/bush-pr... for more info.
Microsoft bought Intrinsa several years ago.
alt Hacker News
Intrinsa's PREfix static source code analyzer would model the execution of the C/C++ code to determine values which would cause a fault.
IIRC they were using a C/C++ compiler front end from EDG to parse C/C++ code to a form they used for the simulation/analysis.
see https://web.eecs.umich.edu/~weimerw/2006-655/reading/bush-pr... for more info.
Microsoft bought Intrinsa several years ago.