Alternatives and similar repositories for oss-fuzz-vulns

Users that are interested in oss-fuzz-vulns are comparing it to the libraries listed below

• ossf / fuzz-introspector
  Fuzz Introspector -- introspect, extend and optimise fuzzers
  ☆431Updated this week
• facebook / sapp
  Post Processor for Facebook Static Analysis Tools.
  ☆141Updated last week
• githubuniverseworkshops / codeql
  CodeQL workshops for GitHub Universe
  ☆96Updated 2 years ago
• sefcom / Witcher
  Witcher is the first framework for using AFL to fuzz web applications.
  ☆100Updated last year
• trailofbits / codeql-queries
  CodeQL queries developed by Trail of Bits
  ☆130Updated last week
• elManto / StaticAnalysisQueries
  A set of Code-ql/Joern queries to find vulnerabilities
  ☆64Updated 4 years ago
• ForAllSecure / mayhem-examples
  Mayhem example templates for programming languages and fuzzers that you love!
  ☆35Updated 3 weeks ago
• GitHubSecurityLab / codeql-zero-to-hero
  CodeQL zero to hero blog post series challenges
  ☆147Updated 3 weeks ago
• google / vandalir
  ☆42Updated 2 years ago
• bahruzjabiyev / frameshifter
  Grammar-based HTTP/2 fuzzer with mutation ability
  ☆47Updated 3 years ago
• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆153Updated last year
• microsoft / codeql-container
  Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.
  ☆119Updated last year
• s3c2 / vfcfinder
  VFCFinder: Searching for the Missing Vulnerability Fixing Commits
  ☆29Updated last year
• fuzzware-fuzzer / fuzzware-experiments
  Files used for reproducing Fuzzware's experiments
  ☆60Updated 2 years ago
• Fraunhofer-AISEC / codyze
  Codyze is a static analyzer for Java, C, C++ based on code property graphs
  ☆89Updated 9 months ago
• Song-Li / ODGen
  ODGen is a JavaScript Static Analysis tool to detect multiple types of vulnerabilities in Node.js packages.
  ☆157Updated last year
• s3c2 / UntrustIDE
  A framework for identifying vulnerabilities in VS Code extensions
  ☆18Updated last year
• NUS-Curiosity / KernJC
  KernJC: Automated Vulnerable Environment Generation for Linux Kernel Vulnerabilities | 🏆 Best Practical Paper Award of RAID 2024
  ☆75Updated last week
• joernio / cpgqls-client-python
  Python library for CPGQL server
  ☆37Updated last year
• hgarrereyn / GraphFuzz
  GraphFuzz is an experimental framework for building structure-aware, library API fuzzers.
  ☆268Updated last year
• SAP / risk-explorer-for-software-supply-chains
  A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…
  ☆79Updated last month
• tree-wizard / fuzz-forest
  ☆26Updated 2 years ago
• s3c2 / llm-vulnerable-functions
  Pairing Security Advisories with Vulnerable Functions Using Open-Source LLMs - DIMVA '24
  ☆16Updated last year
• quarkslab / pastis
  PASTIS: Collaborative Fuzzing Framework
  ☆162Updated 2 weeks ago
• testable-eu / sast-testability-patterns
  Testability Pattern Catalogs for SAST
  ☆31Updated 8 months ago
• GitHubSecurityLab / gh-mrva
  Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)
  ☆59Updated 6 months ago
• parikhakshat / autoharness
  A tool that automatically creates fuzzing harnesses based on a library
  ☆279Updated 3 years ago
• claroty / busybox-fuzzing
  ☆95Updated 3 years ago
• ha1vk / blackhat_wasm
  blackhat usa 2022 I attended
  ☆73Updated 3 years ago
• SunLab-GMU / PySecDB
  The official repository of ICSME'23 paper "Exploring Security Commits in Python"
  ☆18Updated 2 years ago