iris-sast / irisLinks
A neurosymbolic framework for vulnerability detection in code
☆320Updated 2 months ago
Alternatives and similar repositories for iris
Users that are interested in iris are comparing it to the libraries listed below
Sorting:
- A manually vetted dataset for security vulnerability detection in Java projects☆89Updated 5 months ago
- Awesome Large Language Models for Vulnerability Detection☆368Updated this week
- PromtFuzz is an automated tool that generates high-quality fuzz drivers for libraries via a fuzz loop constructed on mutating LLMs' promp…☆307Updated 3 weeks ago
- An autonomous LLM-agent for large-scale, repository-level code auditing☆328Updated 2 months ago
- LLMDFA: Analyzing Dataflow in Code with Large Language Models (NeurIPS 2024)☆180Updated 3 months ago
- CKGFuzzer: LLM-Based Fuzz Driver Generation Enhanced By Code Knowledge Graph☆135Updated last year
- Parsing-based Analyzer☆69Updated 8 months ago
- MegaVul - The largest, high-quality, extensible, continuously updated, C/C++/Java vulnerability dataset☆136Updated last year
- Atropos: Effective Fuzzing of Web Applications for Server-Side Vulnerabilities☆75Updated last year
- YASA is an open-source static program analysis project. Its core innovation lies in a unified intermediate representation called UAST, d…☆246Updated this week
- PatchEval: A New Benchmark for Evaluating LLMs on Patching Real-World Vulnerabilities☆184Updated last month
- [CCS'24] An LLM-based, fully automated fuzzing tool for option combination testing.☆99Updated 9 months ago
- [USENIX Security 25] PatchAgent is a LLM-based practical program repair agent that mimics human expertise.☆119Updated 2 months ago
- ODGen is a JavaScript Static Analysis tool to detect multiple types of vulnerabilities in Node.js packages.☆164Updated 2 years ago
- The repository has collected about 10,000 malicious pypi packages. This dataset is the work of the ASE 2023 paper "An Empirical Study of…☆113Updated 2 weeks ago
- A curated list of awesome resources about LLM supply chain security (including papers, security reports and CVEs)☆95Updated last year
- YuraScanner☆72Updated 11 months ago
- Hey folks, this is a repository for papers on LLM for Vuln. Detection area☆74Updated 10 months ago
- A deep learning model for localizing bugs in C/C++ source code (USENIX'23)☆156Updated 2 years ago
- A library to extract Code Property Graphs from C/C++, Java, Go, Python, Ruby and every other language through LLVM-IR.☆407Updated this week
- LLMSAN: Sanitizing Large Language Models in Bug Detection with Data-Flow (EMNLP Findings 2024)☆84Updated 3 months ago
- Witcher is the first framework for using AFL to fuzz web applications.☆104Updated 2 years ago
- ☆558Updated 2 months ago
- This repo list the core literature in the field of fuzzing test, large language model, and LLM-based fuzzer. Most of papers are selected …☆56Updated last year
- CVE-Bench: A Benchmark for AI Agents’ Ability to Exploit Real-World Web Application Vulnerabilities☆146Updated 3 weeks ago
- SecCodeBench is a benchmark suite focusing on evaluating the security of code generated by large language models (LLMs).☆86Updated this week
- Large Language Model guided Protocol Fuzzing (NDSS'24)☆375Updated 7 months ago
- SecLLMHolmes is a generalized, fully automated, and scalable framework to systematically evaluate the performance (i.e., accuracy and rea…☆63Updated 9 months ago
- A continuously updated collection of CodeLLM papers maintained by PurCL group @ Purdue☆599Updated 3 weeks ago
- CVEfixes: Automated Collection of Vulnerabilities and Their Fixes from Open-Source Software☆312Updated last year