Alternatives and similar repositories for cloud-property-graph

Users that are interested in cloud-property-graph are comparing it to the libraries listed below

• SAP / risk-explorer-for-software-supply-chains
  A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…
  ☆75Updated last month
• Privado-Inc / privado-core
  The heart & core of Privado code scanner
  ☆29Updated 7 months ago
• AppThreat / chen
  Code Hierarchy Exploration Net (chen)
  ☆21Updated 2 weeks ago
• purs3lab / Argus
  ☆45Updated 11 months ago
• joernio / joernti-codetidal5
  An integration of JoernTI's CodeTIDAL5 neural type inference model.
  ☆25Updated 4 months ago
• Fraunhofer-AISEC / codyze
  Codyze is a static analyzer for Java, C, C++ based on code property graphs
  ☆87Updated 5 months ago
• s3c2 / vfcfinder
  VFCFinder: Searching for the Missing Vulnerability Fixing Commits
  ☆29Updated last year
• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆145Updated last year
• AppThreat / atom
  atom is a novel intermediate representation for applications and a standalone tool that is powered by chen.
  ☆68Updated 2 weeks ago
• secure-software-engineering / swan
  Security methods for WeAkNess detection
  ☆20Updated 3 months ago
• SAP / project-kb
  Home page of project "KB"
  ☆126Updated 2 months ago
• lyvd / bandit4mal
  A fork of Bandit tool with patterns to identifying malicious python code.
  ☆27Updated 2 years ago
• find-sec-bugs / juliet-test-suite
  A collection of test cases in the Java language. It contains examples for 112 different CWEs.
  ☆56Updated 4 years ago
• TQRG / secbench
  🪐 A Database of Existing Security Vulnerabilities Patches to Enable Evaluation of Techniques (single-commit; multi-language)
  ☆40Updated 2 months ago
• Aurore54F / HideNoSeek
  Static data flow-based analysis of JavaScript files to detect syntactic clones
  ☆23Updated 5 years ago
• secure-software-engineering / tamiflex
  TamiFlex facilitates static analysis of programs that use reflection and custom class loaders
  ☆44Updated 4 years ago
• fasten-project / fasten
  Analyse package dependency networks at the call graph level
  ☆93Updated last year
• plume-oss / plume
  Plume is a code representation benchmarking library with options to extract the AST from Java bytecode and store the result in various gr…
  ☆74Updated 8 months ago
• NUS-Curiosity / VulZoo
  VulZoo: A Comprehensive Vulnerability Intelligence Dataset (ASE 2024 Demo)
  ☆51Updated 3 months ago
• timothee-chauvin / eyeballvul
  future-proof vulnerability detection benchmark, based on CVEs in open-source repos
  ☆56Updated this week
• too4words / securibench-micro
  Securibench Micro is a benchmark for static analysis tools for security.
  ☆26Updated 6 years ago
• joernio / query-database
  Default query sets for Joern
  ☆27Updated 3 years ago
• isstac / badger
  ☆20Updated 6 years ago
• setu1421 / SecretBench
  SecretBench is a dataset consisting of different secret types collected from public open-source repositories.
  ☆33Updated last year
• ShiftLeftSecurity / fuzzyc2cpg
  A fuzzy parser for C/C++ that creates semantic code property graphs
  ☆36Updated 4 years ago
• niklasrisse / LimitsOfML4Vuln
  ☆26Updated last year
• CodeShield-Security / Serverless-Goat-Java
  Java version of the deliberately vulnerable serverless application Serverless-Goat from https://github.com/OWASP/Serverless-Goat
  ☆12Updated 3 years ago
• SunLab-GMU / PySecDB
  The official repository of ICSME'23 paper "Exploring Security Commits in Python"
  ☆18Updated last year
• IQTLabs / pypi-scan
  Scan pypi for typosquatting
  ☆36Updated 2 years ago
• SunLab-GMU / PatchDB
  The public dataset in the paper "PatchDB: A Large-Scale Security Patch Dataset". This paper appears in the 51st Annual IEEE/IFIP Interna…
  ☆41Updated last year