Alternatives and similar repositories for cpg:

Users that are interested in cpg are comparing it to the libraries listed below

• QilinPTA / Qilin
  Qilin: A New Framework for Supporting Fine-Grained Context-Sensitivity in Java Pointer Analysis
  ☆133Updated 2 weeks ago
• VulDeeLocator / VulDeeLocator
  ☆98Updated 6 months ago
• ghaffarian / progex
  PROGEX (Program Graph Extractor); a cross platform tool for extracting graphical program representations from software source code
  ☆85Updated 3 years ago
• ymirsky / VulChecker
  A deep learning model for localizing bugs in C/C++ source code (USENIX'23)
  ☆150Updated last year
• ShiftLeftSecurity / codepropertygraph
  Code Property Graph: specification, query language, and utilities
  ☆504Updated 2 weeks ago
• CodeShield-Security / SPDS
  Efficient and Precise Pointer-Tracking Data-Flow Framework
  ☆66Updated 4 months ago
• HuantWang / FUNDED_NISL
  FUNDED is a novel learning framework for building vulnerability detection models.
  ☆130Updated last year
• Fraunhofer-AISEC / codyze
  Codyze is a static analyzer for Java, C, C++ based on code property graphs
  ☆87Updated 3 months ago
• iris-sast / cwe-bench-java
  A manually vetted dataset for security vulnerability detection in Java projects
  ☆48Updated this week
• ZeoVan / MSR_20_Code_vulnerability_CSV_Dataset
  A C/C++ Code Vulnerability Dataset with Code Changes and CVE Summaries
  ☆290Updated 4 years ago
• plast-lab / doop
  The official repo of Doop, the declarative pointer analysis framework.
  ☆177Updated last month
• mistupv / JavaSlicer
  A program slicer for Java, based on the system dependence graph (SDG).
  ☆66Updated last year
• PromptFuzz / PromptFuzz
  PromtFuzz is an automated tool that generates high-quality fuzz drivers for libraries via a fuzz loop constructed on mutating LLMs' promp…
  ☆255Updated last month
• gmu-swe / phosphor
  Phosphor: Dynamic Taint Tracking for the JVM
  ☆173Updated 3 months ago
• soot-oss / heros
  IFDS/IDE Solver for Soot and other frameworks
  ☆240Updated last year
• CGCL-codes / VulDeePecker
  VulDeePecker: A Deep Learning-Based System for Vulnerability Detection
  ☆324Updated 4 years ago
• secureIT-project / CVEfixes
  CVEfixes: Automated Collection of Vulnerabilities and Their Fixes from Open-Source Software
  ☆242Updated 8 months ago
• tuhh-softsec / vul4j
  Vul4J: A Dataset of Reproducible Java Vulnerabilities
  ☆82Updated 2 months ago
• PurCL / CodeLLMPaper
  A continuously updated collection of CodeLLM papers maintained by PurCL group @ Purdue
  ☆407Updated this week
• jumormt / DeepWukong
  DeepWukong: Statically Detecting Software Vulnerabilities Using Deep Graph Neural Network
  ☆103Updated 2 years ago
• SAP / project-kb
  Home page of project "KB"
  ☆123Updated 3 weeks ago
• SMAT-Lab / Scalpel
  Scalpel: The Python Static Analysis Framework
  ☆309Updated last year
• IBM / D2A
  This repository is to support contributions for tools and new data entries for the D2A dataset hosted in DAX
  ☆71Updated 2 years ago
• osssanitizer / maloss
  Towards Measuring Supply Chain Attacks on Package Managers for Interpreted Languages
  ☆133Updated 2 years ago
• chengpeng-wang / LLMDFA
  LLMDFA: Analyzing Dataflow in Code with Large Language Models (NeurIPS 2024)
  ☆105Updated last month
• find-sec-bugs / juliet-test-suite
  A collection of test cases in the Java language. It contains examples for 112 different CWEs.
  ☆54Updated 3 years ago
• pietrobraione / jbse
  A symbolic Java virtual machine for program analysis, verification and test generation
  ☆110Updated 2 weeks ago
• VulDetProject / ReVeal
  ☆204Updated 9 months ago
• stg-tud / MUBench
  ☆56Updated last year
• Vul-LMGNN / vul-LMGGNN
  Code for the paper - Source Code Vulnerability Detection: Combining Code Language Models and Code Property Graph
  ☆72Updated last year