Fraunhofer-AISEC / cpgLinks
A library to extract Code Property Graphs from C/C++, Java, Go, Python, Ruby and every other language through LLVM-IR.
☆381Updated this week
Alternatives and similar repositories for cpg
Users that are interested in cpg are comparing it to the libraries listed below
Sorting:
- Vul4J: A Dataset of Reproducible Java Vulnerabilities☆103Updated last month
- Code Property Graph: specification, query language, and utilities☆545Updated 2 weeks ago
- A manually vetted dataset for security vulnerability detection in Java projects☆77Updated 2 months ago
- CVEfixes: Automated Collection of Vulnerabilities and Their Fixes from Open-Source Software☆292Updated last year
- LLMDFA: Analyzing Dataflow in Code with Large Language Models (NeurIPS 2024)☆154Updated this week
- ☆102Updated last year
- A deep learning model for localizing bugs in C/C++ source code (USENIX'23)☆153Updated 2 years ago
- ☠️ Ground-truth dataset for vulnerability prediction (known research datasets and data sources included such as NVD, CVE Details and OSV)…☆98Updated 2 years ago
- PROGEX (Program Graph Extractor); a cross platform tool for extracting graphical program representations from software source code☆85Updated 4 years ago
- This repository is to support contributions for tools and new data entries for the D2A dataset hosted in DAX☆74Updated 3 years ago
- ISSTA'23 - Third-party Library Dependency for Large-scale SCA in the C/C++ Ecosystem: How Far Are We?☆30Updated 2 years ago
- DeepWukong: Statically Detecting Software Vulnerabilities Using Deep Graph Neural Network☆110Updated 3 years ago
- Qilin: A New Framework for Supporting Fine-Grained Context-Sensitivity in Java Pointer Analysis☆145Updated last month
- A C/C++ Code Vulnerability Dataset with Code Changes and CVE Summaries☆336Updated 4 years ago
- FUNDED is a novel learning framework for building vulnerability detection models.☆129Updated last year
- Scalpel: The Python Static Analysis Framework☆320Updated last year
- ☆60Updated last year
- Towards Measuring Supply Chain Attacks on Package Managers for Interpreted Languages☆135Updated 3 years ago
- Home page of project "KB"☆130Updated 7 months ago
- BigCloneEval - A Clone Detection Tool Evaluation Framework for BigCloneBench☆81Updated last year
- MegaVul - The largest, high-quality, extensible, continuously updated, C/C++/Java vulnerability dataset☆124Updated 9 months ago
- HiddenCPG: Large-Scale Vulnerable Clone Detection Using Subgraph Isomorphism of Code Property Graphs☆43Updated 3 years ago
- A vulnerability patch gathering tool☆43Updated 6 years ago
- A hybrid analysis framework to aid in uncovering deserialization vulnerabilities☆15Updated last year
- A program slicer for Java, based on the system dependence graph (SDG).☆67Updated 2 weeks ago
- VulTrigger is a tool to for identifying vulnerability-triggering statements across functions and investigating the effectiveness of funct…☆41Updated last year
- ☆342Updated last year
- A continuously updated collection of CodeLLM papers maintained by PurCL group @ Purdue☆553Updated 2 weeks ago
- ODGen is a JavaScript Static Analysis tool to detect multiple types of vulnerabilities in Node.js packages.☆157Updated last year
- Effective Vulnerability Identification by Learning Comprehensive Program Semantics via Graph Neural Networks☆239Updated last year