Fraunhofer-AISEC / cpg
A library to extract Code Property Graphs from C/C++, Java, Go, Python, Ruby and every other language through LLVM-IR.
☆318Updated this week
Alternatives and similar repositories for cpg:
Users that are interested in cpg are comparing it to the libraries listed below
- Qilin: A New Framework for Supporting Fine-Grained Context-Sensitivity in Java Pointer Analysis☆133Updated 2 weeks ago
- ☆98Updated 6 months ago
- PROGEX (Program Graph Extractor); a cross platform tool for extracting graphical program representations from software source code☆85Updated 3 years ago
- A deep learning model for localizing bugs in C/C++ source code (USENIX'23)☆150Updated last year
- Code Property Graph: specification, query language, and utilities☆504Updated 2 weeks ago
- Efficient and Precise Pointer-Tracking Data-Flow Framework☆66Updated 4 months ago
- FUNDED is a novel learning framework for building vulnerability detection models.☆130Updated last year
- Codyze is a static analyzer for Java, C, C++ based on code property graphs☆87Updated 3 months ago
- A manually vetted dataset for security vulnerability detection in Java projects☆48Updated this week
- A C/C++ Code Vulnerability Dataset with Code Changes and CVE Summaries☆290Updated 4 years ago
- The official repo of Doop, the declarative pointer analysis framework.☆177Updated last month
- A program slicer for Java, based on the system dependence graph (SDG).☆66Updated last year
- PromtFuzz is an automated tool that generates high-quality fuzz drivers for libraries via a fuzz loop constructed on mutating LLMs' promp…☆255Updated last month
- Phosphor: Dynamic Taint Tracking for the JVM☆173Updated 3 months ago
- IFDS/IDE Solver for Soot and other frameworks☆240Updated last year
- VulDeePecker: A Deep Learning-Based System for Vulnerability Detection☆324Updated 4 years ago
- CVEfixes: Automated Collection of Vulnerabilities and Their Fixes from Open-Source Software☆242Updated 8 months ago
- Vul4J: A Dataset of Reproducible Java Vulnerabilities☆82Updated 2 months ago
- A continuously updated collection of CodeLLM papers maintained by PurCL group @ Purdue☆407Updated this week
- DeepWukong: Statically Detecting Software Vulnerabilities Using Deep Graph Neural Network☆103Updated 2 years ago
- Home page of project "KB"☆123Updated 3 weeks ago
- Scalpel: The Python Static Analysis Framework☆309Updated last year
- This repository is to support contributions for tools and new data entries for the D2A dataset hosted in DAX☆71Updated 2 years ago
- Towards Measuring Supply Chain Attacks on Package Managers for Interpreted Languages☆133Updated 2 years ago
- LLMDFA: Analyzing Dataflow in Code with Large Language Models (NeurIPS 2024)☆105Updated last month
- A collection of test cases in the Java language. It contains examples for 112 different CWEs.☆54Updated 3 years ago
- A symbolic Java virtual machine for program analysis, verification and test generation☆110Updated 2 weeks ago
- ☆204Updated 9 months ago
- ☆56Updated last year
- Code for the paper - Source Code Vulnerability Detection: Combining Code Language Models and Code Property Graph☆72Updated last year