find-sec-bugs / juliet-test-suite
A collection of test cases in the Java language. It contains examples for 112 different CWEs.
☆50Updated 3 years ago
Related projects: ⓘ
- Codyze is a static analyzer for Java, C, C++ based on code property graphs☆86Updated this week
- Source Code Vulnerability Detection Tools(SCVDT)provides a vulnerable code database, vulnerability detection service for Java and C/C++ p…☆109Updated 3 years ago
- ReDeBug Source Code.☆24Updated 9 months ago
- VUDDY: A Scalable and Accurate Vulnerable Code Clone Detector (S&P'17)☆51Updated 3 months ago
- ☆50Updated 8 months ago
- Static data flow-based analysis of JavaScript files to detect syntactic clones☆22Updated 4 years ago
- Home page of project "KB"☆111Updated 2 weeks ago
- Securibench Micro is a benchmark for static analysis tools for security.☆25Updated 6 years ago
- Efficient and Precise Pointer-Tracking Data-Flow Framework☆64Updated 6 months ago
- holding data and processing code for the paper 'A Large-Scale Empirical Study on Vulnerability Distribution within Projects and the Lesso…☆20Updated 4 years ago
- HiddenCPG: Large-Scale Vulnerable Clone Detection Using Subgraph Isomorphism of Code Property Graphs☆38Updated last year
- a basic Gradle configuration to get started with WALA☆28Updated last month
- Datasets of the paper: Detecting "0-Day" Vulnerability: An Empirical Study of Secret Security Patch in OSS☆18Updated 5 years ago
- Binary rewriting approach with fork server support to fuzz Java applications with afl-fuzz.☆88Updated 6 years ago
- ☆28Updated last year
- ☆50Updated 3 years ago
- Security methods for WeAkNess detection☆19Updated this week
- This repository contains a list of papers about software supply chain☆25Updated 3 months ago
- JoanAudit - A security slicing tool that helps security auditors to perform their security auditing tasks more efficiently☆11Updated 7 years ago
- The public dataset in the paper "PatchDB: A Large-Scale Security Patch Dataset". This paper appears in the 51st Annual IEEE/IFIP Interna…☆36Updated 11 months ago
- An Automated Vulnerability Detection System☆55Updated 8 years ago
- ISSTA'23 - Third-party Library Dependency for Large-scale SCA in the C/C++ Ecosystem: How Far Are We?☆26Updated last year
- B2SFinder is a binary-to-source matching tool for OSS reuse detection on COTS software. This project contains the core code of B2SFinder …☆54Updated 5 years ago
- Towards Measuring Supply Chain Attacks on Package Managers for Interpreted Languages☆115Updated last year
- Neo4J visualisation tool for the Code Property Graph☆14Updated 3 years ago
- ☆65Updated last year
- ☆84Updated 10 months ago
- A static analysis tool for Java programs, based on the theory of code property graphs.☆16Updated last year
- ☠️ Ground-truth dataset for vulnerability prediction (known research datasets and data sources included such as NVD, CVE Details and OSV)…☆80Updated last year
- A GPT-Based Fuzz Driver Generator☆44Updated 10 months ago