iris-sast / cwe-bench-java
A manually vetted dataset for security vulnerability detection in Java projects
☆47Updated this week
Alternatives and similar repositories for cwe-bench-java:
Users that are interested in cwe-bench-java are comparing it to the libraries listed below
- MegaVul - The largest, high-quality, extensible, continuously updated, C/C++/Java vulnerability dataset☆65Updated 3 months ago
- LLMDFA: Analyzing Dataflow in Code with Large Language Models (NeurIPS 2024)☆105Updated last month
- This is an evaluation set for the problem of directed/targeted test input generation. We use it to benchmark the ability of Large Languag…☆30Updated last month
- A neurosymbolic framework for vulnerability detection in code☆40Updated last week
- [ICSE 2024 Industry Challenge Track] Official implementation of "ReposVul: A Repository-Level High-Quality Vulnerability Dataset".☆59Updated 4 months ago
- tool of llm-based indirect-call analyzer☆18Updated last month
- VulTrigger is a tool to for identifying vulnerability-triggering statements across functions and investigating the effectiveness of funct…☆33Updated last year
- ☆80Updated last year
- This is a benchmark for evaluating the vulnerability discovery ability of automated approaches including Large Language Models (LLMs), de…☆67Updated 4 months ago
- LLMSAN: Sanitizing Large Language Models in Bug Detection with Data-Flow (EMNLP Findings 2024)☆66Updated 6 months ago
- ☆26Updated 6 months ago
- ☆18Updated last month
- The official repository of "GraphSPD: Graph-Based Security Patch Detection with Enriched Code Semantics". The paper will appear in the IE…☆44Updated last year
- PatchFinder: A Two-Phase Approach to Security Patch Tracing for Disclosed Vulnerabilities in Open Source Software (ISSTA 2024)☆19Updated 3 weeks ago
- TensorFlow API analysis tool and malicious model detection tool☆26Updated last month
- DeepWukong: Statically Detecting Software Vulnerabilities Using Deep Graph Neural Network☆103Updated 2 years ago
- CovRL-Fuzz: Fuzzing JavaScript Interpreters with Coverage-Guided Reinforcement Learning for LLM-Based Mutation☆22Updated 5 months ago
- FIRE: Combining Multi-Stage Filtering with Taint Analysis for Scalable Recurring Vulnerability Detection.☆12Updated 6 months ago
- ISSTA'23 - Third-party Library Dependency for Large-scale SCA in the C/C++ Ecosystem: How Far Are We?☆29Updated last year
- Code for the paper - Source Code Vulnerability Detection: Combining Code Language Models and Code Property Graph☆72Updated 11 months ago
- ☆38Updated 2 years ago
- ☆17Updated 7 months ago
- HiddenCPG: Large-Scale Vulnerable Clone Detection Using Subgraph Isomorphism of Code Property Graphs☆43Updated 2 years ago
- For our ISSTA22 paper "DocTer: Documentation-Guided Fuzzing for Testing Deep Learning API Functions" by Danning Xie, Yitong Li, Mijung Ki…☆35Updated 2 years ago
- SecLLMHolmes is a generalized, fully automated, and scalable framework to systematically evaluate the performance (i.e., accuracy and rea…☆54Updated 5 months ago
- ☠️ Ground-truth dataset for vulnerability prediction (known research datasets and data sources included such as NVD, CVE Details and OSV)…☆90Updated last year
- This repo list the core literature in the field of fuzzing test, large language model, and LLM-based fuzzer. Most of papers are selected …☆52Updated last year
- This repository is to support contributions for tools and new data entries for the D2A dataset hosted in DAX☆69Updated 2 years ago
- The source code of project "LLift" (Enhancing static analysis with LLM)☆68Updated last year
- Assisting Static Analysis with Large Language Models: A ChatGPT Experiment☆34Updated last year