iris-sast / irisLinks
A neurosymbolic framework for vulnerability detection in code
☆116Updated this week
Alternatives and similar repositories for iris
Users that are interested in iris are comparing it to the libraries listed below
Sorting:
- A manually vetted dataset for security vulnerability detection in Java projects☆64Updated last week
- PromtFuzz is an automated tool that generates high-quality fuzz drivers for libraries via a fuzz loop constructed on mutating LLMs' promp…☆273Updated 2 weeks ago
- CKGFuzzer: LLM-Based Fuzz Driver Generation Enhanced By Code Knowledge Graph☆82Updated 4 months ago
- LLMDFA: Analyzing Dataflow in Code with Large Language Models (NeurIPS 2024)☆125Updated 2 weeks ago
- A deep learning model for localizing bugs in C/C++ source code (USENIX'23)☆149Updated last year
- Qilin: A New Framework for Supporting Fine-Grained Context-Sensitivity in Java Pointer Analysis☆135Updated 2 months ago
- A hybrid analysis framework to aid in uncovering deserialization vulnerabilities☆14Updated 8 months ago
- This repo list the core literature in the field of fuzzing test, large language model, and LLM-based fuzzer. Most of papers are selected …☆53Updated last year
- Atropos: Effective Fuzzing of Web Applications for Server-Side Vulnerabilities☆70Updated 10 months ago
- Awesome Large Language Models for Vulnerability Detection☆160Updated this week
- ☆26Updated last year
- ☆39Updated 2 years ago
- A GPT-Based Fuzz Driver Generator☆46Updated last year
- [CCS'24] An LLM-based, fully automated fuzzing tool for option combination testing.☆83Updated 2 months ago
- Assisting Static Analysis with Large Language Models: A ChatGPT Experiment☆34Updated last year
- MegaVul - The largest, high-quality, extensible, continuously updated, C/C++/Java vulnerability dataset☆101Updated 5 months ago
- MINER provided by the paper "MINER: A Hybrid Data-Driven Approach for REST API Fuzzing"☆39Updated 2 years ago
- ☆27Updated 2 weeks ago
- This is an evaluation set for the problem of directed/targeted test input generation. We use it to benchmark the ability of Large Languag…☆33Updated 3 months ago
- The source code of project "LLift" (Enhancing static analysis with LLM)☆72Updated last year
- Precision-guided context sensitivity for pointer analysis☆61Updated last year
- Goshawk is a static analyze tool to detect memory corruption bugs in C source codes. It utilizes NLP to infer custom memory management fu…☆82Updated last year
- Some test samples for CPG execution logic.☆21Updated last year
- FuzzCache: Optimizing Web Application Fuzzing Through Software-Based Data Cache (ACM CCS 2024)☆11Updated 7 months ago
- Witcher is the first framework for using AFL to fuzz web applications.☆91Updated last year
- ☆17Updated 11 months ago
- Hey folks, this is a repository for papers on LLM for Vuln. Detection area☆51Updated 2 months ago
- Taint analysis implementation based on Heros and Soot☆45Updated last year
- tool of llm-based indirect-call analyzer☆22Updated 4 months ago
- Auto-generated CodeQL rules for matching CVE vulnerabilities and variants.☆175Updated 9 months ago