Vancir / Awesome-Software-Supply-Chain-SecurityLinks
Awesome materials for software supply chain security
☆18Updated 5 years ago
Alternatives and similar repositories for Awesome-Software-Supply-Chain-Security
Users that are interested in Awesome-Software-Supply-Chain-Security are comparing it to the libraries listed below
Sorting:
- Works about detecting vulnerable using ML.☆86Updated 5 years ago
- Source Code Vulnerability Detection Tools(SCVDT)provides a vulnerable code database, vulnerability detection service for Java and C/C++ p…☆117Updated 4 years ago
- A set of Code-ql/Joern queries to find vulnerabilities☆63Updated 4 years ago
- ☆90Updated last year
- Code for UI, backend, engine and statistical analysis for RE☆22Updated 3 years ago
- Collate and collect binary related materials, including papers, tools, etc. Now,there are the following categories: 1、Fuzzing☆58Updated 6 years ago
- VulSeeker: A Semantic Learning Based Vulnerability Seeker For Cross-Platform Binary☆105Updated 6 years ago
- ☆79Updated 3 years ago
- Auto-generated CodeQL rules for matching CVE vulnerabilities and variants.☆178Updated 10 months ago
- Automatic Exploit Generation Paper☆90Updated 3 years ago
- Binary Code Similarity Analysis (BCSA) Tool☆123Updated 2 months ago
- 📖源码安全相关的论文收集(污点分析/符号执行/模糊测试)☆21Updated 3 years ago
- This is the project for the paper “Large-scale Security Measurements on the Android Firmware Ecosystem” in ICSE2022☆37Updated 8 months ago
- KernJC: Automated Vulnerable Environment Generation for Linux Kernel Vulnerabilities | 🏆 Best Practical Paper Award of RAID 2024☆67Updated 3 weeks ago
- B2SFinder is a binary-to-source matching tool for OSS reuse detection on COTS software. This project contains the core code of B2SFinder …☆56Updated 5 years ago
- FirmSec Dataset☆11Updated 3 years ago
- ☆28Updated 2 years ago
- Summary of static analysis in Java and C/C++☆18Updated 2 years ago
- Detecting Flow of Sensitive Data in Mini-Programs with Static Taint Analysis☆76Updated last year
- 记录自己在看 afl 源码时候的一些笔记和想法,还有一些自己觉得有意思的魔改。2020年12月2日update:添加混合模糊测试目录☆110Updated 4 years ago
- Something about AEG☆269Updated 6 years ago
- Browser Fuzz Summarize / 浏览器模糊测试综述☆141Updated 4 years ago
- ☆29Updated 3 months ago
- ☆26Updated last year
- Pairing Security Advisories with Vulnerable Functions Using Open-Source LLMs - DIMVA '24☆16Updated 11 months ago
- Code and artifacts related to the Asia CCS 2022 paper☆37Updated 3 years ago
- Source-binary patch presence test system.☆84Updated 3 years ago
- There are some papers about fuzzing. I record them by Xmind. Welcome to contact to me.☆274Updated 5 years ago
- ☆102Updated 3 years ago
- A docker environment which could run and debug multiarch program, such as mips, arm☆18Updated 4 years ago