iris-sast / iris
A neurosymbolic framework for vulnerability detection in code
☆49Updated this week
Alternatives and similar repositories for iris:
Users that are interested in iris are comparing it to the libraries listed below
- A manually vetted dataset for security vulnerability detection in Java projects☆48Updated this week
- LLMDFA: Analyzing Dataflow in Code with Large Language Models (NeurIPS 2024)☆105Updated last month
- Hey folks, this is a repository for papers on LLM for Vuln. Detection area☆41Updated 3 weeks ago
- The source code of project "LLift" (Enhancing static analysis with LLM)☆68Updated last year
- [CCS'24] An LLM-based, fully automated fuzzing tool for option combination testing.☆74Updated last week
- ☆16Updated 9 months ago
- This repo list the core literature in the field of fuzzing test, large language model, and LLM-based fuzzer. Most of papers are selected …☆52Updated last year
- ☆26Updated 7 months ago
- WhiteFox: White-Box Compiler Fuzzing Empowered by Large Language Models (OOPSLA 2024)☆56Updated 5 months ago
- HiddenCPG: Large-Scale Vulnerable Clone Detection Using Subgraph Isomorphism of Code Property Graphs☆43Updated 2 years ago
- A collection of security papers on top-tier publications☆43Updated last week
- A GPT-Based Fuzz Driver Generator☆46Updated last year
- A deep learning model for localizing bugs in C/C++ source code (USENIX'23)☆150Updated last year
- SecLLMHolmes is a generalized, fully automated, and scalable framework to systematically evaluate the performance (i.e., accuracy and rea…☆55Updated 5 months ago
- PromtFuzz is an automated tool that generates high-quality fuzz drivers for libraries via a fuzz loop constructed on mutating LLMs' promp…☆255Updated last month
- Assisting Static Analysis with Large Language Models: A ChatGPT Experiment☆34Updated last year
- CKGFuzzer: LLM-Based Fuzz Driver Generation Enhanced By Code Knowledge Graph☆62Updated 2 months ago
- ☆26Updated last year
- MINER provided by the paper "MINER: A Hybrid Data-Driven Approach for REST API Fuzzing"☆39Updated 2 years ago
- ☆19Updated last month
- The official repository of "GraphSPD: Graph-Based Security Patch Detection with Enriched Code Semantics". The paper will appear in the IE…☆44Updated last year
- Two-Level Collaborative Fuzzing for Python Runtimes☆17Updated last year
- This is a benchmark for evaluating the vulnerability discovery ability of automated approaches including Large Language Models (LLMs), de…☆67Updated 5 months ago
- This is an evaluation set for the problem of directed/targeted test input generation. We use it to benchmark the ability of Large Languag…☆31Updated last month
- Atropos: Effective Fuzzing of Web Applications for Server-Side Vulnerabilities☆67Updated 8 months ago
- Resources for our ICSE'24 poster: Prompt-Enhanced Software Vulnerability Detection Using ChatGPT.☆24Updated 11 months ago
- A curated list of awesome resources about LLM supply chain security (including papers, security reports and CVEs)☆66Updated 3 months ago
- MegaVul - The largest, high-quality, extensible, continuously updated, C/C++/Java vulnerability dataset☆67Updated 3 months ago
- ☆80Updated last year
- ☆17Updated 8 months ago