Alternatives and similar repositories for software_supply_chain_papers:

Users that are interested in software_supply_chain_papers are comparing it to the libraries listed below

• lyvd / bad-snakes-icse23-artifacts
  The Artifacts for ICSE 2023 paper: Bad Snakes: Understanding and Improving Python Package Index Malware Scanning
  ☆11Updated last year
• assuremoss / lastpymile
  A reimplementation of LastPyMile: A Python-based library to Identify the differences between build artifacts of PyPI packages and the res…
  ☆15Updated 3 years ago
• WOOSEUNGHOON / Centris-public
  ☆54Updated last year
• lkpsg / ccscanner
  A C/C++ dependency scanner
  ☆38Updated last year
• Tricker-z / TPLite
  ISSTA'23 - Third-party Library Dependency for Large-scale SCA in the C/C++ Ecosystem: How Far Are We?
  ☆29Updated last year
• s3c2 / vfcfinder
  VFCFinder: Searching for the Missing Vulnerability Fixing Commits
  ☆26Updated last year
• sodium49 / CNEPS-public
  Public version of CNEPS
  ☆20Updated 2 months ago
• SAP / project-kb
  Home page of project "KB"
  ☆120Updated 2 weeks ago
• WOOSEUNGHOON / MOVERY-public
  ☆26Updated last year
• osssanitizer / maloss
  Towards Measuring Supply Chain Attacks on Package Managers for Interpreted Languages
  ☆130Updated 2 years ago
• githubnext / amalfi-artifact
  Artifact accompanying our ICSE '22 paper "Practical Automated Detection of Malicious npm Packages"
  ☆43Updated 3 years ago
• RiS3-Lab / FICS
  ☆50Updated 4 years ago
• SunLab-GMU / PatchDB
  The public dataset in the paper "PatchDB: A Large-Scale Security Patch Dataset". This paper appears in the 51st Annual IEEE/IFIP Interna…
  ☆40Updated last year
• lyvd / bandit4mal
  A fork of Bandit tool with patterns to identifying malicious python code.
  ☆24Updated 2 years ago
• tuhh-softsec / vul4j
  Vul4J: A Dataset of Reproducible Java Vulnerabilities
  ☆77Updated 3 weeks ago
• lxyeternal / pypi_malregistry
  The repository has collected about 10,000 malicious pypi packages. This dataset is the work of the ASE 2023 paper "An Empirical Study of…
  ☆82Updated 3 months ago
• DeepSoftwareAnalytics / LibDB
  ☆34Updated 2 years ago
• MarkLee131 / PatchFinder
  PatchFinder: A Two-Phase Approach to Security Patch Tracing for Disclosed Vulnerabilities in Open Source Software (ISSTA 2024)
  ☆19Updated this week
• 5hadowblad3 / Beacon_artifact
  Research artifact for Oakland (S&P) 2022, "BEACON: Directed Grey-Box Fuzzing with Provable Path Pruning"
  ☆35Updated 5 months ago
• SAP-samples / cross-language-detection-artifacts
  This repository complements our paper by offering the training dataset, the best-performing models utilized in our real-world experiment,…
  ☆18Updated 2 weeks ago
• ZJU-SEC / TensorAbuse
  TensorFlow API analysis tool and malicious model detection tool
  ☆24Updated 3 weeks ago
• SunLab-GMU / GraphSPD
  The official repository of "GraphSPD: Graph-Based Security Patch Detection with Enriched Code Semantics". The paper will appear in the IE…
  ☆44Updated last year
• ymirsky / VulChecker
  A deep learning model for localizing bugs in C/C++ source code (USENIX'23)
  ☆145Updated last year
• occia / fuzzdrivergpt
  A GPT-Based Fuzz Driver Generator
  ☆46Updated last year
• electricalwind / data7
  A vulnerability patch gathering tool
  ☆41Updated 6 years ago
• SAP / risk-explorer-for-software-supply-chains
  A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…
  ☆74Updated this week
• dbrumley / redebug
  ReDeBug Source Code.
  ☆24Updated last year
• find-sec-bugs / juliet-test-suite
  A collection of test cases in the Java language. It contains examples for 112 different CWEs.
  ☆53Updated 3 years ago
• cristianstaicu / SecBench.js
  ☆31Updated 5 months ago
• ASSERT-KTH / VRepair
  open science repo of "Neural Transfer Learning for Repairing Security Vulnerabilities in C Code" https://arxiv.org/pdf/2104.08308
  ☆60Updated last year