SunLab-GMU / PySecDBLinks
The official repository of ICSME'23 paper "Exploring Security Commits in Python"
☆18Updated 2 years ago
Alternatives and similar repositories for PySecDB
Users that are interested in PySecDB are comparing it to the libraries listed below
Sorting:
- A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…☆79Updated 2 weeks ago
- VulZoo: A Comprehensive Vulnerability Intelligence Dataset | ASE 2024 Demo☆65Updated 8 months ago
- OSS-Fuzz vulnerabilities for OSV.☆166Updated this week
- A framework for identifying vulnerabilities in VS Code extensions☆18Updated last year
- Automatically fuzz Rust projects from scratch☆58Updated 5 months ago
- ☆27Updated 2 years ago
- ☆52Updated last year
- CredData is a set of files including credentials in open source projects. CredData includes suspicious lines with manual review results a…☆51Updated last week
- The source code (including datasets) of V1SCAN (USENIX Security 2023; will be uploaded).☆42Updated 2 years ago
- A dataset of software supply chain compromises. Please help us maintain it!☆130Updated 3 years ago
- 🪐 A Database of Existing Security Vulnerabilities Patches to Enable Evaluation of Techniques (single-commit; multi-language)☆42Updated 8 months ago
- Data about all known supply-chain attacks through history☆62Updated 6 months ago
- Home page of project "KB"☆131Updated 8 months ago
- An open-source dataset of malicious software packages found in the wild, 100% vetted by humans.☆268Updated this week
- SecretBench is a dataset consisting of different secret types collected from public open-source repositories.☆45Updated last year
- Testability Pattern Catalogs for SAST☆31Updated 9 months ago
- Statically Detecting Vulnerable Data Flows in Browser Extensions at Scale☆78Updated 4 years ago
- VFCFinder: Searching for the Missing Vulnerability Fixing Commits☆30Updated 2 years ago
- The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…☆155Updated last year
- Linux based vulnerabilities (CVE) exploit detection through runtime security using Falco/Osquery/Yara/Sigma☆21Updated 2 years ago
- Determine whether your compute is truly vulnerable to a specific vulnerability by accounting for all factors which affect *actual* exploi…☆141Updated 2 years ago
- ☆25Updated last year
- Codyze is a static analyzer for Java, C, C++ based on code property graphs☆90Updated 10 months ago
- Analysis of syscall sequence pattern from exploit codes for advanced system call sequence filtering for enhanced container security☆16Updated 2 years ago
- An ever-growing list of resources for data-driven vulnerability assessment and prioritization☆129Updated 2 years ago
- Automated dynamic security analysis by emulation of IoT firmware images in CI-pipelines.☆13Updated 4 years ago
- A community collection of security reviews of open source software components.☆96Updated last year
- A place to systematically store software bill of materials (SBOM) documents.☆48Updated 2 years ago
- CodeQL queries developed by Trail of Bits☆137Updated last month
- A library to produce cybersecurity exploitation routes (exploit flows). Inspired by TensorFlow.☆38Updated 2 years ago