usnistgov / ai-bugfinder-testbedLinks
A static analyzer powered by AI
☆21Updated 10 months ago
Alternatives and similar repositories for ai-bugfinder-testbed
Users that are interested in ai-bugfinder-testbed are comparing it to the libraries listed below
Sorting:
- atom is a novel intermediate representation for applications and a standalone tool that is powered by chen.☆68Updated 2 weeks ago
- An open-source dataset of malicious software packages found in the wild, 100% vetted by humans.☆212Updated this week
- A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…☆75Updated 2 months ago
- Code Hierarchy Exploration Net (chen)☆21Updated this week
- Challenge Problem #1 - Linux Kernel (NOTE: This code does not reflect the active state of what will be used at competition time, please r…☆53Updated last year
- VFCFinder: Searching for the Missing Vulnerability Fixing Commits☆29Updated last year
- A very simple open source implementation of Google's Project Naptime☆158Updated 3 months ago
- future-proof vulnerability detection benchmark, based on CVEs in open-source repos☆58Updated this week
- ☆28Updated 2 weeks ago
- A comprehensive local Linux Privilege-Escalation Benchmark☆36Updated last month
- VulZoo: A Comprehensive Vulnerability Intelligence Dataset (ASE 2024 Demo)☆51Updated 3 months ago
- ChainReactor is a research project that leverages AI planning to discover exploitation chains for privilege escalation on Unix systems. T…☆48Updated 7 months ago
- ☆45Updated 11 months ago
- SecretBench is a dataset consisting of different secret types collected from public open-source repositories.☆33Updated last year
- A fork of Bandit tool with patterns to identifying malicious python code.☆27Updated 2 years ago
- Securibench Micro is a benchmark for static analysis tools for security.☆26Updated 6 years ago
- The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…☆145Updated last year
- A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling,…☆135Updated last year
- The Cloud Property Graph is based on a Code Property Graph and tries to connect static code analysis and Cloud runtime assessment.☆25Updated 5 months ago
- Program analysis tools built on tree-sitter (https://github.com/tree-sitter/tree-sitter).☆43Updated last year
- Manager of third-party sources of Semgrep rules 🗂☆87Updated 11 months ago
- Mayhem example templates for programming languages and fuzzers that you love!☆33Updated last year
- A framework for identifying vulnerabilities in VS Code extensions☆18Updated 11 months ago
- A Risk-Based Prioritization Taxonomy for prioritizing CVEs (Common Vulnerabilities and Exposures).☆77Updated last year
- ☆26Updated last year
- CVE-Bench: A Benchmark for AI Agents’ Ability to Exploit Real-World Web Application Vulnerabilities☆61Updated 2 weeks ago
- ☆26Updated 2 years ago
- 🪐 A Database of Existing Security Vulnerabilities Patches to Enable Evaluation of Techniques (single-commit; multi-language)☆40Updated 2 months ago
- Cybersecurity Intelligent Pentesting Helper for Ethical Researcher (CIPHER). Fine tuned LLM for penetration testing guidance based on wri…☆24Updated 6 months ago
- AutoVAS is an automated vulnerability analysis system with a deep learning approach.☆35Updated 3 years ago