Skip to content

@dessertlab DESSERT Research Lab (University of Naples Federico II, Italy)

Change the repository type filter

All

    Repositories list

    37 repositories

    • Robustness-of-AI-Offensive-Code-Generators

      Public
      Python
      GNU General Public License v3.0
      0000Updated Sep 25, 2024Sep 25, 2024

    • DeVAIC

      Public
      DeVAIC (Detection of Vulnerabilities in AI-generated Code) is a tool that works on code snippets written in Python language with the aim of detecting vulnerabilities belonging to the OWASP categories listed in the Top 10 of 2021.
      Shell
      GNU General Public License v3.0
      0100Updated Sep 23, 2024Sep 23, 2024

    • Targeted-Data-Poisoning-Attacks

      Public
      This repository contains the code, the dataset and the experimental results related to the paper "Vulnerabilities in AI Code Generators: Exploring Targeted Data Poisoning Attacks" accepted for publication at The 32nd IEEE/ACM International Conference on Program Comprehension (ICPC 2024).
      pythondatasetcode-generationvulnerabilitiesnmtdata-poisoning-attackscodebertsoftware-security-assessment
      Python
      GNU General Public License v3.0
      1300Updated Aug 5, 2024Aug 5, 2024

    • Software-Exploits-with-Contextual-Information

      Public
      GNU General Public License v3.0
      0000Updated Aug 2, 2024Aug 2, 2024

    • CTI-Document-Analyzer

      Public
      HTML
      GNU General Public License v3.0
      0100Updated Jul 26, 2024Jul 26, 2024

    • generative-ai-cybersecurity

      Public
      This repository contains the materials and scripts for the talk titled "Generative AI in Cybersecurity: Generating Offensive Code from Natural Language" by Pietro Liguori, University of Naples Federico II, DESSERT group. The talk is part of ARTISAN 2024: Summer School on the role and effects of ARTificial Intelligence in Secure ApplicatioNs.
      offensive-securityprompt-engineeringgenerative-ai
      Python
      GNU General Public License v3.0
      0000Updated Jul 16, 2024Jul 16, 2024

    • ACCA

      Public
      Automating the Correctness Assessment of AI-generated Assembly Code for Security Contexts
      Assembly
      GNU General Public License v3.0
      0000Updated Jul 6, 2024Jul 6, 2024

    • xen_temporal_isolation_data

      Public
      Python
      0000Updated Jul 4, 2024Jul 4, 2024

    • PureEdgeSim

      Public
      PureEdgeSim: A simulation framework for performance evaluation of cloud, fog, and pure edge computing environments.
      Java
      GNU General Public License v3.0
      74000Updated Jun 5, 2024Jun 5, 2024

    • powershell-offensive-code-generation

      Public
      PowerShell
      GNU General Public License v3.0
      0400Updated May 22, 2024May 22, 2024

    • powershell-offensive-code-generation-Artifact

      Public
      Jupyter Notebook
      GNU General Public License v3.0
      0100Updated May 22, 2024May 22, 2024

    • violent-python

      Public
      This repo contains a manually curated dataset, where a sample contains a piece of Python code from an offensive software, and its corresponding description in natural language (plain English).
      GNU General Public License v3.0
      1300Updated Apr 24, 2024Apr 24, 2024

    • Laccolith

      Public
      Rust
      0100Updated Mar 5, 2024Mar 5, 2024

    • train-ticket

      Public
      Train Ticket - A Benchmark Microservice System
      Java
      Apache License 2.0
      345100Updated Mar 3, 2024Mar 3, 2024

    • iris

      Public
      Repository linked to DSN 2023 paper "IRIS: a Record and Replay Framework to Enable Hardware-assisted Virtualization Fuzzing"
      C
      GNU General Public License v3.0
      1300Updated Jan 19, 2024Jan 19, 2024

    • DeepSample

      Public
      Java
      1200Updated Dec 18, 2023Dec 18, 2023

    • DAIC

      Public
      Python
      0000Updated Dec 12, 2023Dec 12, 2023

    • SEEliDS

      Public
      Python
      0000Updated Aug 25, 2023Aug 25, 2023

    • Shellcode_IA32

      Public
      Shellcode_IA32 is a dataset consisting of challenging but common assembly instructions, collected from real shellcodes, with their natural language descriptions. The dataset can be used for neural machine translation tasks to automatically generate software exploits from natural language.
      linuxdatasetshellcodenasmnmtia32nasm-assemblyexploit-developmentnasm-languageia32-assembly
      GNU General Public License v3.0
      23400Updated Jul 19, 2023Jul 19, 2023

    • OpenStack-Fault-Injection-Environment

      Public
      Tools to repeat the fault-injection experiments presented in the paper "How Bad Can a Bug Get? An Empirical Analysis of Software Failures in the OpenStack Cloud Computing Platform" (ESEC/FSE '19).
      openstackfault-injectionartifact
      Shell
      GNU Affero General Public License v3.0
      3700Updated Mar 9, 2023Mar 9, 2023

    • PySA2

      Public
      PySA2 is the Python Source-code Analyzer for Python 2.7 that exploits Python AST
      HTML
      GNU General Public License v3.0
      1102Updated Dec 8, 2022Dec 8, 2022

    • OpenStack-multi-tenant-workload

      Public
      Shell
      0000Updated Nov 19, 2022Nov 19, 2022

    • k4.0s

      Public
      This repo refers to the paper "Introducing k4.0s: a Model for Mixed-Criticality Container Orchestration in Industry 4.0" @ ADSN 2022
      Go
      GNU General Public License v3.0
      0110Updated Aug 30, 2022Aug 30, 2022

    • cti-to-mitre-with-nlp

      Public
      Replication package for the paper "Automatic Mapping of Unstructured Cyber Threat Intelligence: An Experimental Study" published at the IEEE International Symposium on Software Reliability Engineering (ISSRE) 2022
      nlpcybersecurityctimitre-attack
      Jupyter Notebook
      Creative Commons Attribution Share Alike 4.0 International
      73800Updated Aug 29, 2022Aug 29, 2022

    • DevOpsTesting

      Public
      Java
      MIT License
      0002Updated Jul 7, 2022Jul 7, 2022

    • EVIL

      Public
      EVIL (Exploiting software VIa natural Language) is an approach to automatically generate software exploits in assembly/Python language from descriptions in natural language. The approach leverages Neural Machine Translation (NMT) techniques and a dataset that we developed for this work.
      linuxexploitencoderassemblydecoderdatasetseq2seqshellcodenmtsoftware-exploitation
      Python
      GNU General Public License v3.0
      32610Updated Mar 8, 2022Mar 8, 2022

    • thorfi

      Public
      ThorFI: A Novel Approach for Network Fault Injection as a Service
      Python
      GNU General Public License v3.0
      3710Updated Mar 1, 2022Mar 1, 2022

    • Failure-Dataset-OpenStack

      Public
      Failure dataset containing information on the events collected in the OpenStack cloud computing platform during three different campaigns of fault-injection experiments performed with three different workloads.
      eventsopenstackfault-injection
      GNU General Public License v3.0
      0700Updated Oct 28, 2021Oct 28, 2021

    • JSSOFTWARE_Android_rejuvenation

      Public
      This public repository includes raw data used in the experimental analysis provided in the article "Software Micro-Rejuvenation for Android Mobile Systems".
      0000Updated Jun 7, 2021Jun 7, 2021

    • DeepEST

      Public
      Java
      1400Updated Feb 9, 2021Feb 9, 2021