Alternatives and similar repositories for software_supply_chain_papers

Users that are interested in software_supply_chain_papers are comparing it to the libraries listed below

• WOOSEUNGHOON / Centris-public
  ☆57Updated last year
• lyvd / bad-snakes-icse23-artifacts
  The Artifacts for ICSE 2023 paper: Bad Snakes: Understanding and Improving Python Package Index Malware Scanning
  ☆12Updated 2 years ago
• SAP / project-kb
  Home page of project "KB"
  ☆127Updated 4 months ago
• lkpsg / ccscanner
  A C/C++ dependency scanner
  ☆39Updated last year
• rwnbiad105 / MPHunter
  MPHunter can detect malicious packages without explicit knowledge.
  ☆5Updated last year
• s3c2 / vfcfinder
  VFCFinder: Searching for the Missing Vulnerability Fixing Commits
  ☆29Updated last year
• Tricker-z / TPLite
  ISSTA'23 - Third-party Library Dependency for Large-scale SCA in the C/C++ Ecosystem: How Far Are We?
  ☆30Updated 2 years ago
• githubnext / amalfi-artifact
  Artifact accompanying our ICSE '22 paper "Practical Automated Detection of Malicious npm Packages"
  ☆45Updated 3 years ago
• assuremoss / lastpymile
  A reimplementation of LastPyMile: A Python-based library to Identify the differences between build artifacts of PyPI packages and the res…
  ☆15Updated 3 years ago
• osssanitizer / maloss
  Towards Measuring Supply Chain Attacks on Package Managers for Interpreted Languages
  ☆134Updated 2 years ago
• tuhh-softsec / vul4j
  Vul4J: A Dataset of Reproducible Java Vulnerabilities
  ☆96Updated last month
• sodium49 / CNEPS-public
  Public version of CNEPS
  ☆21Updated 7 months ago
• security-commits / security-patches-dataset
  ☠️ Ground-truth dataset for vulnerability prediction (known research datasets and data sources included such as NVD, CVE Details and OSV)…
  ☆93Updated last year
• SAP-samples / cross-language-detection-artifacts
  This repository complements our paper by offering the training dataset, the best-performing models utilized in our real-world experiment,…
  ☆20Updated 5 months ago
• WOOSEUNGHOON / MOVERY-public
  ☆26Updated 2 years ago
• electricalwind / data7
  A vulnerability patch gathering tool
  ☆42Updated 6 years ago
• MarkLee131 / PatchFinder
  PatchFinder: A Two-Phase Approach to Security Patch Tracing for Disclosed Vulnerabilities in Open Source Software (ISSTA 2024)
  ☆20Updated 4 months ago
• SunLab-GMU / PatchDB
  The public dataset in the paper "PatchDB: A Large-Scale Security Patch Dataset". This paper appears in the 51st Annual IEEE/IFIP Interna…
  ☆42Updated last year
• ymirsky / VulChecker
  A deep learning model for localizing bugs in C/C++ source code (USENIX'23)
  ☆152Updated 2 years ago
• DeepSoftwareAnalytics / LibDB
  ☆34Updated 2 years ago
• secureIT-project / CVEfixes
  CVEfixes: Automated Collection of Vulnerabilities and Their Fixes from Open-Source Software
  ☆267Updated last year
• JafarAkhondali / Morefixes
  MoreFixes: A Large-Scale Dataset of CVE Fix Commits Mined through Enhanced Repository Discovery
  ☆36Updated 4 months ago
• RiS3-Lab / FICS
  ☆50Updated 4 years ago
• VulDeeLocator / VulDeeLocator
  ☆101Updated 9 months ago
• awsm-research / LineVul
  A Transformer-based Line-Level Vulnerability Prediction
  ☆142Updated last year
• SunLab-GMU / GraphSPD
  The official repository of "GraphSPD: Graph-Based Security Patch Detection with Enriched Code Semantics". The paper will appear in the IE…
  ☆46Updated last year
• IBM / D2A
  This repository is to support contributions for tools and new data entries for the D2A dataset hosted in DAX
  ☆74Updated 3 years ago
• CGCL-codes / VulTrigger
  VulTrigger is a tool to for identifying vulnerability-triggering statements across functions and investigating the effectiveness of funct…
  ☆39Updated last year
• WSP-LAB / HiddenCPG
  HiddenCPG: Large-Scale Vulnerable Clone Detection Using Subgraph Isomorphism of Code Property Graphs
  ☆43Updated 2 years ago
• baolingfeng / V-SZZ
  This is the replication package of V-SZZ, which has been accepted by ICSE2022
  ☆15Updated 2 weeks ago