Skip to content
/ AutoVAS Public

AutoVAS is an automated vulnerability analysis system with a deep learning approach.

License

Notifications You must be signed in to change notification settings

kppw99/AutoVAS

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

51 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

DOI

Automated Vulnerability Analysis System (AutoVAS)

Graphical_Abstract

Prerequisite

For NVD Dataset

For SARD Dataset

For Evaluation

  • HTMLTestRunner for making test reports ($ pip install HTMLTestRunner)
  • coverage for checking the test coverage ($ pip install coverage)

Description of directory

  • Dataset: Original source code of dataset, snippet files, tokenizing file
  • Resource: Slicing criterion file
  • src: Main source code of AutoVAS. The src direction has model and preprocessing folder.
  • tool: Utility files for AutoVAS such as joern, llvm-slicing

Publications

Jeon, S., & Kim, H. K. (2021). AutoVAS: An Automated Vulnerability Analysis System with a Deep Learning Approach. Computers & Security, 102308.

@article{jeon2021autovas,
  title={AutoVAS: An Automated Vulnerability Analysis System with a Deep Learning Approach},
  author={Jeon, Sanghoon and Kim, Huy Kang},
  journal={Computers & Security},
  pages={102308},
  year={2021},
  publisher={Elsevier}
}

Notice

The uploaded snippet, which consists of the C language-based snippet, is part of a total snippet. In the NVD dataset, we applied some heuristic points as a slicing criterion such as arithmetic, array, etc., in addition to vulnerable APIs. Lastly, we only uploaded snippets after preprocessing without the program slicing module.

About

This program is authored and maintained by Sanghoon(Kevin) Jeon.

Email: kppw99@gmail.com

GitHub@kppw99