Alternatives and similar repositories for VoAPI2

Users that are interested in VoAPI2 are comparing it to the libraries listed below

• cuhk-seclab / TChecker
  ☆41Updated 2 years ago
• NSSL-SJTU / SaTC
  A prototype of Shared-keywords aware Taint Checking, a novel static analysis approach that tracks the data flow of the user input between…
  ☆315Updated 9 months ago
• SecuringWeb / BlackWidow
  ☆51Updated 2 years ago
• huhusmang / Awesome-LLMs-for-Vulnerability-Detection
  Awesome Large Language Models for Vulnerability Detection
  ☆252Updated this week
• seclab-fudan / RecurScan
  ☆27Updated last year
• iris-sast / cwe-bench-java
  A manually vetted dataset for security vulnerability detection in Java projects
  ☆76Updated last month
• alibaba / sec-code-bench
  SecCodeBench is a benchmark suite focusing on evaluating the security of code generated by large language models (LLMs).
  ☆56Updated last month
• jackfromeast / BambooFuzz
  BambooFuzz: An IoT Firmware Vulnerability Mining System based on Static and Dynamic Analysis
  ☆53Updated 3 years ago
• LianKee / CLDroid
  A data pool-aware static analyzer to detect cross-layer threats in Android apps.
  ☆12Updated last year
• kangwei-zhong / Big4PaperList
  A curated list of Security Big4 papers for Privacy, Mobile Security and Access Control.
  ☆15Updated 11 months ago
• antgroup / YASA-UAST
  YASA-UAST is an intermediate representation structure for multi-language program analysis. The UAST-Parser parses code from different pro…
  ☆32Updated last week
• Feysh-Group / corax-community
  Corax for Java: A general static analysis framework for java code checking.
  ☆255Updated 9 months ago
• fdu-sec / NestFuzz
  A structure-aware grey box fuzzer based on modeling the input processing logic.
  ☆171Updated 11 months ago
• CISPA-SysSec / atropos-legacy
  Atropos: Effective Fuzzing of Web Applications for Server-Side Vulnerabilities
  ☆72Updated last year
• iris-sast / iris
  A neurosymbolic framework for vulnerability detection in code
  ☆228Updated 2 weeks ago
• Hornos3 / pwnfile
  ☆12Updated last year
• a101e-lab / IoTFuzzBench
  ☆18Updated 2 years ago
• FuzzAnything / PromptFuzz
  PromtFuzz is an automated tool that generates high-quality fuzz drivers for libraries via a fuzz loop constructed on mutating LLMs' promp…
  ☆289Updated last month
• fullwaywang / QlRules
  Auto-generated CodeQL rules for matching CVE vulnerabilities and variants.
  ☆180Updated last year
• xywang18 / IoT-vuln
  ☆21Updated 3 years ago
• LLMSmith / LLMSmith
  ☆35Updated 6 months ago
• BytecodeDL / ByteCodeDL
  A declarative static analysis tool for jvm bytecode based Datalog like CodeQL
  ☆342Updated last year
• flyboss / MiniTracker
  MiniTracker: Large-Scale Sensitive Information Tracking in Mini Apps.
  ☆31Updated 9 months ago
• botao21 / IOTScope
  ☆24Updated 3 years ago
• secnotes / fuzzing-tutorial
  Curated list of classic fuzzing books, papers about fuzzing at information security top conferences over the years, commonly used fuzzing…
  ☆369Updated last month
• HaHarden / CPGPractise
  Some test samples for CPG execution logic.
  ☆20Updated last year
• secureweb / symphp
  Holistic Concolic Execution for Dynamic Web Applications via Symbolic Interpreter Analysis (IEEE S&P 2024)
  ☆12Updated 11 months ago
• WayneDevMaze / Chinese_noted_AFL
  记录自己在看 afl 源码时候的一些笔记和想法，还有一些自己觉得有意思的魔改。2020年12月2日update：添加混合模糊测试目录
  ☆110Updated 4 years ago
• PL-Ninja / MySootScript
  oh my soot !
  ☆92Updated 3 years ago
• Song-Li / ODGen
  ODGen is a JavaScript Static Analysis tool to detect multiple types of vulnerabilities in Node.js packages.
  ☆155Updated last year