Alternatives and similar repositories for cpg:

Users that are interested in cpg are comparing it to the libraries listed below

• ShiftLeftSecurity / codepropertygraph
  Code Property Graph: specification, query language, and utilities
  ☆491Updated last week
• ghaffarian / progex
  PROGEX (Program Graph Extractor); a cross platform tool for extracting graphical program representations from software source code
  ☆85Updated 3 years ago
• QilinPTA / Qilin
  Qilin: A New Framework for Supporting Fine-Grained Context-Sensitivity in Java Pointer Analysis
  ☆128Updated last month
• soot-oss / heros
  IFDS/IDE Solver for Soot and other frameworks
  ☆240Updated last year
• mistupv / JavaSlicer
  A program slicer for Java, based on the system dependence graph (SDG).
  ☆65Updated last year
• VulDeeLocator / VulDeeLocator
  ☆95Updated 4 months ago
• tuhh-softsec / vul4j
  Vul4J: A Dataset of Reproducible Java Vulnerabilities
  ☆77Updated 2 weeks ago
• SMAT-Lab / Scalpel
  Scalpel: The Python Static Analysis Framework
  ☆303Updated 11 months ago
• IBM / D2A
  This repository is to support contributions for tools and new data entries for the D2A dataset hosted in DAX
  ☆66Updated 2 years ago
• ymirsky / VulChecker
  A deep learning model for localizing bugs in C/C++ source code (USENIX'23)
  ☆144Updated last year
• noidsirius / SootTutorial
  A step-by-step tutorial for Soot (a Java static analysis framework)
  ☆434Updated 2 years ago
• SAP / project-kb
  Home page of project "KB"
  ☆119Updated this week
• jeffsvajlenko / BigCloneEval
  BigCloneEval - A Clone Detection Tool Evaluation Framework for BigCloneBench
  ☆74Updated last year
• chengpeng-wang / LLMDFA
  LLMDFA: Analyzing Dataflow in Code with Large Language Models (NeurIPS 2024)
  ☆95Updated last week
• TQRG / security-patches-dataset
  ☠️ Ground-truth dataset for vulnerability prediction (known research datasets and data sources included such as NVD, CVE Details and OSV)…
  ☆88Updated last year
• MarkLee131 / PatchFinder
  PatchFinder: A Two-Phase Approach to Security Patch Tracing for Disclosed Vulnerabilities in Open Source Software (ISSTA 2024)
  ☆19Updated 2 months ago
• ZeoVan / MSR_20_Code_vulnerability_CSV_Dataset
  A C/C++ Code Vulnerability Dataset with Code Changes and CVE Summaries
  ☆279Updated 3 years ago
• HuantWang / FUNDED_NISL
  FUNDED is a novel learning framework for building vulnerability detection models.
  ☆129Updated last year
• plast-lab / doop
  The official repo of Doop, the declarative pointer analysis framework.
  ☆173Updated this week
• WOOSEUNGHOON / Centris-public
  ☆54Updated last year
• secureIT-project / CVEfixes
  CVEfixes: Automated Collection of Vulnerabilities and Their Fixes from Open-Source Software
  ☆232Updated 7 months ago
• osssanitizer / maloss
  Towards Measuring Supply Chain Attacks on Package Managers for Interpreted Languages
  ☆129Updated 2 years ago
• PurCL / CodeLLMPaper
  A continuously updated collection of CodeLLM papers maintained by PurCL group @ Purdue
  ☆327Updated last week
• ise-uiuc / TitanFuzz
  ☆79Updated last year
• CodeShield-Security / SPDS
  Efficient and Precise Pointer-Tracking Data-Flow Framework
  ☆66Updated 3 months ago
• githubnext / amalfi-artifact
  Artifact accompanying our ICSE '22 paper "Practical Automated Detection of Malicious npm Packages"
  ☆43Updated 3 years ago
• CGCL-codes / PathEval
  This is an evaluation set for the problem of directed/targeted test input generation. We use it to benchmark the ability of Large Languag…
  ☆28Updated this week
• Icyrockton / MegaVul
  MegaVul - The largest, high-quality, extensible, continuously updated, C/C++/Java vulnerability dataset
  ☆62Updated 2 months ago
• Tricker-z / TPLite
  ISSTA'23 - Third-party Library Dependency for Large-scale SCA in the C/C++ Ecosystem: How Far Are We?
  ☆29Updated last year
• Fraunhofer-AISEC / codyze
  Codyze is a static analyzer for Java, C, C++ based on code property graphs
  ☆88Updated last month