s3c2 / vfcfinder
VFCFinder: Searching for the Missing Vulnerability Fixing Commits
☆26Updated last year
Alternatives and similar repositories for vfcfinder:
Users that are interested in vfcfinder are comparing it to the libraries listed below
- The public dataset in the paper "PatchDB: A Large-Scale Security Patch Dataset". This paper appears in the 51st Annual IEEE/IFIP Interna…☆40Updated last year
- This repository contains a list of papers about software supply chain☆27Updated 10 months ago
- ☆54Updated last year
- ☆26Updated last year
- ☆54Updated 6 months ago
- ISSTA'23 - Third-party Library Dependency for Large-scale SCA in the C/C++ Ecosystem: How Far Are We?☆29Updated last year
- The repo for V0Finder (Security 21)☆26Updated 3 years ago
- Public version of CNEPS☆21Updated 3 months ago
- VUDDY: A Scalable and Accurate Vulnerable Code Clone Detector (S&P'17)☆51Updated 2 months ago
- A C/C++ dependency scanner☆38Updated last year
- Large Commit Precise Vulnerability Dataset based on AOSP CVE☆62Updated last year
- ☠️ Ground-truth dataset for vulnerability prediction (known research datasets and data sources included such as NVD, CVE Details and OSV)…☆88Updated last year
- VulZoo: A Comprehensive Vulnerability Intelligence Dataset (ASE 2024 Demo)☆37Updated last week
- ReDeBug Source Code.☆24Updated last year
- ☆26Updated 2 years ago
- No description yet☆11Updated last year
- ☆34Updated 2 years ago
- ☆22Updated 7 months ago
- MoreFixes: A Large-Scale Dataset of CVE Fix Commits Mined through Enhanced Repository Discovery☆24Updated 3 weeks ago
- The official repository of "GraphSPD: Graph-Based Security Patch Detection with Enriched Code Semantics". The paper will appear in the IE…☆44Updated last year
- HiddenCPG: Large-Scale Vulnerable Clone Detection Using Subgraph Isomorphism of Code Property Graphs☆43Updated 2 years ago
- A deep learning model for localizing bugs in C/C++ source code (USENIX'23)☆147Updated last year
- A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…☆74Updated last week
- The source code (including datasets) of V1SCAN (USENIX Security 2023; will be uploaded).☆41Updated last year
- CONCOCTION is an automated machine learning-based vulnerability detection framework that combines static source code information and dyna…☆23Updated 7 months ago
- ☆39Updated last year
- ☆49Updated 4 years ago
- holding data and processing code for the paper 'A Large-Scale Empirical Study on Vulnerability Distribution within Projects and the Lesso…☆20Updated 4 years ago
- MTFuzz: Fuzzing with a Multi-Task Neural Network☆35Updated 4 years ago
- B2SFinder is a binary-to-source matching tool for OSS reuse detection on COTS software. This project contains the core code of B2SFinder …☆54Updated 5 years ago