Alternatives and similar repositories for oss-fuzz-vulns

Users that are interested in oss-fuzz-vulns are comparing it to the libraries listed below

• ossf / fuzz-introspector
  Fuzz Introspector -- introspect, extend and optimise fuzzers
  ☆434Updated this week
• facebook / sapp
  Post Processor for Facebook Static Analysis Tools.
  ☆140Updated 2 weeks ago
• githubuniverseworkshops / codeql
  CodeQL workshops for GitHub Universe
  ☆96Updated 3 years ago
• microsoft / codeql-container
  Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.
  ☆121Updated 2 years ago
• trailofbits / codeql-queries
  CodeQL queries developed by Trail of Bits
  ☆136Updated last month
• elManto / StaticAnalysisQueries
  A set of Code-ql/Joern queries to find vulnerabilities
  ☆65Updated 4 years ago
• GitHubSecurityLab / codeql-zero-to-hero
  CodeQL zero to hero blog post series challenges
  ☆159Updated 2 months ago
• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆155Updated last year
• google / vandalir
  ☆42Updated 2 years ago
• sefcom / Witcher
  Witcher is the first framework for using AFL to fuzz web applications.
  ☆102Updated 2 years ago
• bahruzjabiyev / frameshifter
  Grammar-based HTTP/2 fuzzer with mutation ability
  ☆47Updated 3 years ago
• Fraunhofer-AISEC / codyze
  Codyze is a static analyzer for Java, C, C++ based on code property graphs
  ☆89Updated 10 months ago
• claroty / busybox-fuzzing
  ☆96Updated 4 years ago
• GitHubSecurityLab / CodeQL-Community-Packs
  Collection of community-driven CodeQL query, library and extension packs
  ☆192Updated last week
• Song-Li / ODGen
  ODGen is a JavaScript Static Analysis tool to detect multiple types of vulnerabilities in Node.js packages.
  ☆160Updated last year
• ForAllSecure / mayhem-examples
  Mayhem example templates for programming languages and fuzzers that you love!
  ☆36Updated last month
• GitHubSecurityLab / gh-mrva
  Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)
  ☆60Updated 7 months ago
• s3c2 / llm-vulnerable-functions
  Pairing Security Advisories with Vulnerable Functions Using Open-Source LLMs - DIMVA '24
  ☆16Updated last year
• NUS-Curiosity / KernJC
  KernJC: Automated Vulnerable Environment Generation for Linux Kernel Vulnerabilities | 🏆 Best Practical Paper Award of RAID 2024
  ☆76Updated last month
• CISPA-SysSec / atropos-legacy
  Atropos: Effective Fuzzing of Web Applications for Server-Side Vulnerabilities
  ☆73Updated last year
• WSP-LAB / FUGIO
  FUGIO: Automatic Exploit Generation for PHP Object Injection Vulnerabilities
  ☆96Updated 2 years ago
• plume-oss / plume
  Plume is a code representation benchmarking library with options to extract the AST from Java bytecode and store the result in various gr…
  ☆76Updated last year
• advanced-security / codeql-queries
  [Deprecated] GitHub's Field Team's CodeQL Custom Queries, Suites, and Configurations. See GitHubSecurityLab/CodeQL-Community-Packs instea…
  ☆85Updated last year
• hgarrereyn / GraphFuzz
  GraphFuzz is an experimental framework for building structure-aware, library API fuzzers.
  ☆269Updated last year
• fgsect / FitM
  FitM, the Fuzzer in the Middle, can fuzz client and server binaries at the same time using userspace snapshot-fuzzing and network emulati…
  ☆290Updated 3 years ago
• GaloisInc / MATE
  MATE is a suite of tools for interactive program analysis with a focus on hunting for bugs in C and C++ code using Code Property Graphs.
  ☆197Updated 3 years ago
• testable-eu / sast-testability-patterns
  Testability Pattern Catalogs for SAST
  ☆31Updated 9 months ago
• s3c2 / UntrustIDE
  A framework for identifying vulnerabilities in VS Code extensions
  ☆18Updated last year
• olbat / nvdcve
  NVD/CVE as JSON files
  ☆122Updated this week
• github / codeql-dubbo-workshop
  ☆60Updated 2 years ago