iris-sast / irisLinks
A neurosymbolic framework for vulnerability detection in code
☆247Updated 3 weeks ago
Alternatives and similar repositories for iris
Users that are interested in iris are comparing it to the libraries listed below
Sorting:
- A manually vetted dataset for security vulnerability detection in Java projects☆77Updated 2 months ago
- An autonomous LLM-agent for large-scale, repository-level code auditing☆250Updated this week
- Awesome Large Language Models for Vulnerability Detection☆277Updated last week
- PromtFuzz is an automated tool that generates high-quality fuzz drivers for libraries via a fuzz loop constructed on mutating LLMs' promp…☆297Updated 2 months ago
- CKGFuzzer: LLM-Based Fuzz Driver Generation Enhanced By Code Knowledge Graph☆116Updated 8 months ago
- Atropos: Effective Fuzzing of Web Applications for Server-Side Vulnerabilities☆72Updated last year
- LLMDFA: Analyzing Dataflow in Code with Large Language Models (NeurIPS 2024)☆154Updated this week
- Parsing-based Analyzer☆51Updated 4 months ago
- YASA is an open-source static program analysis project. Its core innovation lies in a unified intermediate representation called UAST, d…☆147Updated this week
- [CCS'24] An LLM-based, fully automated fuzzing tool for option combination testing.☆91Updated 6 months ago
- ODGen is a JavaScript Static Analysis tool to detect multiple types of vulnerabilities in Node.js packages.☆157Updated last year
- Hey folks, this is a repository for papers on LLM for Vuln. Detection area☆64Updated 6 months ago
- MegaVul - The largest, high-quality, extensible, continuously updated, C/C++/Java vulnerability dataset☆124Updated 9 months ago
- [USENIX Security 25] PatchAgent is a LLM-based practical program repair agent that mimics human expertise.☆97Updated this week
- ☆29Updated 5 months ago
- A deep learning model for localizing bugs in C/C++ source code (USENIX'23)☆153Updated 2 years ago
- Witcher is the first framework for using AFL to fuzz web applications.☆100Updated last year
- A hybrid analysis framework to aid in uncovering deserialization vulnerabilities☆15Updated last year
- LLMSAN: Sanitizing Large Language Models in Bug Detection with Data-Flow (EMNLP Findings 2024)☆83Updated this week
- A curated list of awesome resources about LLM supply chain security (including papers, security reports and CVEs)☆87Updated 9 months ago
- FuzzCache: Optimizing Web Application Fuzzing Through Software-Based Data Cache (ACM CCS 2024)☆17Updated 11 months ago
- ☆27Updated last year
- The repository has collected about 10,000 malicious pypi packages. This dataset is the work of the ASE 2023 paper "An Empirical Study of…☆105Updated last week
- ☆438Updated 2 weeks ago
- ☆43Updated 2 years ago
- YuraScanner☆57Updated 8 months ago
- The source code of project "LLift" (Enhancing static analysis with LLM)☆78Updated last year
- A continuously updated collection of CodeLLM papers maintained by PurCL group @ Purdue☆553Updated 2 weeks ago
- tool of llm-based indirect-call analyzer☆31Updated 8 months ago
- This is an evaluation set for the problem of directed/targeted test input generation. We use it to benchmark the ability of Large Languag…☆33Updated 7 months ago