lhmtriet / awesome-vulnerability-assessmentLinks
An ever-growing list of resources for data-driven vulnerability assessment and prioritization
☆129Updated 2 years ago
Alternatives and similar repositories for awesome-vulnerability-assessment
Users that are interested in awesome-vulnerability-assessment are comparing it to the libraries listed below
Sorting:
- ☠️ Ground-truth dataset for vulnerability prediction (known research datasets and data sources included such as NVD, CVE Details and OSV)…☆101Updated 2 years ago
- CVEfixes: Automated Collection of Vulnerabilities and Their Fixes from Open-Source Software☆310Updated last year
- VulZoo: A Comprehensive Vulnerability Intelligence Dataset | ASE 2024 Demo☆66Updated 9 months ago
- 🪐 A Database of Existing Security Vulnerabilities Patches to Enable Evaluation of Techniques (single-commit; multi-language)☆42Updated 8 months ago
- The repository has collected about 10,000 malicious pypi packages. This dataset is the work of the ASE 2023 paper "An Empirical Study of…☆112Updated last month
- pretrained BERT model for cyber security text, learned CyberSecurity Knowledge☆204Updated 2 years ago
- A logic-based enterprise network security analyzer☆135Updated 2 years ago
- AttacKG: Constructing Knowledge-enhanced Attack Graphs from Cyber Threat Intelligence Reports☆175Updated 2 years ago
- MoreFixes: A Large-Scale Dataset of CVE Fix Commits Mined through Enhanced Repository Discovery☆60Updated 2 weeks ago
- An open-source dataset of malicious software packages found in the wild, 100% vetted by humans.☆286Updated last week
- ☆25Updated 4 years ago
- AutoVAS is an automated vulnerability analysis system with a deep learning approach.☆35Updated 4 years ago
- AIBugHunter: A Practical Tool for Predicting, Classifying and Repairing Software Vulnerabilities☆44Updated last year
- SMET : Semantic Mapping of CVE to ATT&CK and its Application to Cybersecurity☆51Updated last year
- SecureBERT is a domain-specific language model to represent cybersecurity textual data.☆109Updated last year
- This is a dataset intended to train a LLM model for a completely CVE focused input and output.☆65Updated 6 months ago
- DiverseVul: A New Vulnerable Source Code Dataset for Deep Learning Based Vulnerability Detection (RAID 2023) https://surrealyz.github.io/…☆171Updated last year
- VFCFinder: Searching for the Missing Vulnerability Fixing Commits☆30Updated 2 years ago
- "Linking Threat Tactics, Techniques, and Patterns with Defensive Weaknesses, Vulnerabilities and Affected Platform Configurations for Cyb…☆102Updated last month
- Artifact accompanying our ICSE '22 paper "Practical Automated Detection of Malicious npm Packages"☆47Updated 3 years ago
- ☆84Updated 2 years ago
- Home page of project "KB"☆131Updated 9 months ago
- Extracting Attack Behavior from Threat Reports☆80Updated 2 years ago
- ☆77Updated last month
- The official repository of "GraphSPD: Graph-Based Security Patch Detection with Enriched Code Semantics". The paper will appear in the IE…☆48Updated 2 years ago
- A fork of Bandit tool with patterns to identifying malicious python code.☆28Updated 3 years ago
- Correlate NVD datasets wIth CWE/CAPEC/CVSS labels for customised usage. Plus static analysis and data visualisation.☆13Updated 2 years ago
- The MITRE ATT&CK Mapping Datasets☆17Updated last year
- Community reconstruction of the legacy JSON NVD Data Feeds. This project uses and redistributes data from the NVD API but is neither endo…☆193Updated last week
- A C/C++ Code Vulnerability Dataset with Code Changes and CVE Summaries☆350Updated 4 years ago