lhmtriet / awesome-vulnerability-assessment
An ever-growing list of resources for data-driven vulnerability assessment and prioritization
☆120Updated last year
Alternatives and similar repositories for awesome-vulnerability-assessment:
Users that are interested in awesome-vulnerability-assessment are comparing it to the libraries listed below
- CVEfixes: Automated Collection of Vulnerabilities and Their Fixes from Open-Source Software☆221Updated 6 months ago
- ☠️ Ground-truth dataset for vulnerability prediction (known research datasets and data sources included such as NVD, CVE Details and OSV)…☆86Updated last year
- An open-source dataset of malicious software packages found in the wild, 100% vetted by humans.☆178Updated this week
- AIBugHunter: A Practical Tool for Predicting, Classifying and Repairing Software Vulnerabilities☆38Updated 10 months ago
- SMET : Semantic Mapping of CVE to ATT&CK and its Application to Cybersecurity☆44Updated 5 months ago
- VFCFinder: Searching for the Missing Vulnerability Fixing Commits☆26Updated last year
- A C/C++ Code Vulnerability Dataset with Code Changes and CVE Summaries☆270Updated 3 years ago
- The repository has collected about 10,000 malicious pypi packages. This dataset is the work of the ASE 2023 paper "An Empirical Study of…☆78Updated 2 months ago
- DiverseVul: A New Vulnerable Source Code Dataset for Deep Learning Based Vulnerability Detection (RAID 2023) https://surrealyz.github.io/…☆125Updated 3 months ago
- ☆75Updated last year
- AutoVAS is an automated vulnerability analysis system with a deep learning approach.☆35Updated 3 years ago
- Towards Measuring Supply Chain Attacks on Package Managers for Interpreted Languages☆127Updated 2 years ago
- A logic-based enterprise network security analyzer☆114Updated 2 years ago
- Community reconstruction of the legacy JSON NVD Data Feeds. This project uses and redistributes data from the NVD API but is neither endo…☆133Updated this week
- ☆21Updated 3 years ago
- 🪐 A Database of Existing Security Vulnerabilities Patches to Enable Evaluation of Techniques (single-commit; multi-language)☆37Updated 2 years ago
- SecureBERT is a domain-specific language model to represent cybersecurity textual data.☆83Updated 7 months ago
- Correlate NVD datasets wIth CWE/CAPEC/CVSS labels for customised usage. Plus static analysis and data visualisation.☆13Updated last year
- Home page of project "KB"☆117Updated 2 months ago
- open science repo of "Neural Transfer Learning for Repairing Security Vulnerabilities in C Code" https://arxiv.org/pdf/2104.08308☆58Updated 11 months ago
- Artifact accompanying our ICSE '22 paper "Practical Automated Detection of Malicious npm Packages"☆43Updated 3 years ago
- ☆26Updated last year
- AttacKG: Constructing Knowledge-enhanced Attack Graphs from Cyber Threat Intelligence Reports☆148Updated last year
- A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…☆75Updated last month
- VulZoo: A Comprehensive Vulnerability Intelligence Dataset (ASE 2024 Demo)☆30Updated 3 months ago
- pretrained BERT model for cyber security text, learned CyberSecurity Knowledge☆170Updated last year
- ☆54Updated last year
- This repository complements our paper by offering the training dataset, the best-performing models utilized in our real-world experiment,…☆16Updated 11 months ago
- Repository for "SecurityEval Dataset: Mining Vulnerability Examples to Evaluate Machine Learning-Based Code Generation Techniques" publis…☆58Updated last year
- VulDeePecker algorithm implemented in Python☆110Updated 5 years ago