Alternatives and similar repositories for cloud-property-graph:

Users that are interested in cloud-property-graph are comparing it to the libraries listed below

• Privado-Inc / privado-core
  The heart & core of Privado code scanner
  ☆29Updated 5 months ago
• SAP / risk-explorer-for-software-supply-chains
  A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…
  ☆75Updated last month
• TQRG / secbench
  🪐 A Database of Existing Security Vulnerabilities Patches to Enable Evaluation of Techniques (single-commit; multi-language)
  ☆38Updated last week
• SAP / project-kb
  Home page of project "KB"
  ☆123Updated 3 weeks ago
• s3c2 / vfcfinder
  VFCFinder: Searching for the Missing Vulnerability Fixing Commits
  ☆27Updated last year
• joernio / joernti-codetidal5
  An integration of JoernTI's CodeTIDAL5 neural type inference model.
  ☆24Updated 2 months ago
• SunLab-GMU / PatchDB
  The public dataset in the paper "PatchDB: A Large-Scale Security Patch Dataset". This paper appears in the 51st Annual IEEE/IFIP Interna…
  ☆40Updated last year
• Fraunhofer-AISEC / codyze
  Codyze is a static analyzer for Java, C, C++ based on code property graphs
  ☆87Updated 3 months ago
• AppThreat / chen
  Code Hierarchy Exploration Net (chen)
  ☆20Updated this week
• Aurore54F / HideNoSeek
  Static data flow-based analysis of JavaScript files to detect syntactic clones
  ☆23Updated 5 years ago
• SunLab-GMU / PySecDB
  The official repository of ICSME'23 paper "Exploring Security Commits in Python"
  ☆18Updated last year
• purs3lab / Argus
  ☆44Updated 9 months ago
• julianthome / joanaudit
  JoanAudit - A security slicing tool that helps security auditors to perform their security auditing tasks more efficiently
  ☆10Updated 7 years ago
• vuduclyunitn / software_supply_chain_papers
  This repository contains a list of papers about software supply chain
  ☆27Updated 11 months ago
• TQRG / security-patches-dataset
  ☠️ Ground-truth dataset for vulnerability prediction (known research datasets and data sources included such as NVD, CVE Details and OSV)…
  ☆90Updated last year
• plume-oss / plume
  Plume is a code representation benchmarking library with options to extract the AST from Java bytecode and store the result in various gr…
  ☆73Updated 6 months ago
• isstac / badger
  ☆20Updated 6 years ago
• bstee615 / tree-climber
  Program analysis tools built on tree-sitter (https://github.com/tree-sitter/tree-sitter).
  ☆38Updated last year
• WM-SEMERU / ACER
  ACER is an AST-based Callgraph Generator Development Framework
  ☆32Updated 10 months ago
• Fraunhofer-AISEC / cpg
  A library to extract Code Property Graphs from C/C++, Java, Go, Python, Ruby and every other language through LLVM-IR.
  ☆318Updated this week
• niklasrisse / LimitsOfML4Vuln
  ☆26Updated last year
• ShiftLeftSecurity / fuzzyc2cpg
  A fuzzy parser for C/C++ that creates semantic code property graphs
  ☆36Updated 4 years ago
• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆142Updated last year
• fasten-project / fasten
  Analyse package dependency networks at the call graph level
  ☆93Updated last year
• NUS-Curiosity / VulZoo
  VulZoo: A Comprehensive Vulnerability Intelligence Dataset (ASE 2024 Demo)
  ☆41Updated last month
• Fraunhofer-AISEC / cpg-neo4j
  Neo4J visualisation tool for the Code Property Graph
  ☆14Updated 3 years ago
• timothee-chauvin / eyeballvul
  future-proof vulnerability detection benchmark, based on CVEs in open-source repos
  ☆52Updated last week
• secure-software-engineering / swan
  Security methods for WeAkNess detection
  ☆20Updated last month
• tree-wizard / fuzz-forest
  ☆26Updated last year
• secure-software-engineering / secucheck
  Soot-based taint analysis with internal Java fluent interface for security specifications in fluentTQL implemented with MagpieBridge to s…
  ☆17Updated 2 months ago