Alternatives and similar repositories for cpg

Users that are interested in cpg are comparing it to the libraries listed below

• tuhh-softsec / vul4j
  Vul4J: A Dataset of Reproducible Java Vulnerabilities
  ☆103Updated last month
• ShiftLeftSecurity / codepropertygraph
  Code Property Graph: specification, query language, and utilities
  ☆545Updated 2 weeks ago
• iris-sast / cwe-bench-java
  A manually vetted dataset for security vulnerability detection in Java projects
  ☆77Updated 2 months ago
• secureIT-project / CVEfixes
  CVEfixes: Automated Collection of Vulnerabilities and Their Fixes from Open-Source Software
  ☆292Updated last year
• chengpeng-wang / LLMDFA
  LLMDFA: Analyzing Dataflow in Code with Large Language Models (NeurIPS 2024)
  ☆154Updated this week
• VulDeeLocator / VulDeeLocator
  ☆102Updated last year
• ymirsky / VulChecker
  A deep learning model for localizing bugs in C/C++ source code (USENIX'23)
  ☆153Updated 2 years ago
• security-commits / security-patches-dataset
  ☠️ Ground-truth dataset for vulnerability prediction (known research datasets and data sources included such as NVD, CVE Details and OSV)…
  ☆98Updated 2 years ago
• ghaffarian / progex
  PROGEX (Program Graph Extractor); a cross platform tool for extracting graphical program representations from software source code
  ☆85Updated 4 years ago
• IBM / D2A
  This repository is to support contributions for tools and new data entries for the D2A dataset hosted in DAX
  ☆74Updated 3 years ago
• Tricker-z / TPLite
  ISSTA'23 - Third-party Library Dependency for Large-scale SCA in the C/C++ Ecosystem: How Far Are We?
  ☆30Updated 2 years ago
• jumormt / DeepWukong
  DeepWukong: Statically Detecting Software Vulnerabilities Using Deep Graph Neural Network
  ☆110Updated 3 years ago
• QilinPTA / Qilin
  Qilin: A New Framework for Supporting Fine-Grained Context-Sensitivity in Java Pointer Analysis
  ☆145Updated last month
• ZeoVan / MSR_20_Code_vulnerability_CSV_Dataset
  A C/C++ Code Vulnerability Dataset with Code Changes and CVE Summaries
  ☆336Updated 4 years ago
• HuantWang / FUNDED_NISL
  FUNDED is a novel learning framework for building vulnerability detection models.
  ☆129Updated last year
• SMAT-Lab / Scalpel
  Scalpel: The Python Static Analysis Framework
  ☆320Updated last year
• WOOSEUNGHOON / Centris-public
  ☆60Updated last year
• osssanitizer / maloss
  Towards Measuring Supply Chain Attacks on Package Managers for Interpreted Languages
  ☆135Updated 3 years ago
• SAP / project-kb
  Home page of project "KB"
  ☆130Updated 7 months ago
• jeffsvajlenko / BigCloneEval
  BigCloneEval - A Clone Detection Tool Evaluation Framework for BigCloneBench
  ☆81Updated last year
• Icyrockton / MegaVul
  MegaVul - The largest, high-quality, extensible, continuously updated, C/C++/Java vulnerability dataset
  ☆124Updated 9 months ago
• WSP-LAB / HiddenCPG
  HiddenCPG: Large-Scale Vulnerable Clone Detection Using Subgraph Isomorphism of Code Property Graphs
  ☆43Updated 3 years ago
• electricalwind / data7
  A vulnerability patch gathering tool
  ☆43Updated 6 years ago
• HexHive / Crystallizer
  A hybrid analysis framework to aid in uncovering deserialization vulnerabilities
  ☆15Updated last year
• mistupv / JavaSlicer
  A program slicer for Java, based on the system dependence graph (SDG).
  ☆67Updated 2 weeks ago
• CGCL-codes / VulTrigger
  VulTrigger is a tool to for identifying vulnerability-triggering statements across functions and investigating the effectiveness of funct…
  ☆41Updated last year
• SySeVR / SySeVR
  ☆342Updated last year
• PurCL / CodeLLMPaper
  A continuously updated collection of CodeLLM papers maintained by PurCL group @ Purdue
  ☆553Updated 2 weeks ago
• Song-Li / ODGen
  ODGen is a JavaScript Static Analysis tool to detect multiple types of vulnerabilities in Node.js packages.
  ☆157Updated last year
• epicosy / devign
  Effective Vulnerability Identification by Learning Comprehensive Program Semantics via Graph Neural Networks
  ☆239Updated last year