Docker image and source code of VulScope#CCS2021
Authors/Creators
- 1. Fudan University
- 2. Pennsylvania State University
Description
This repo contains the pre-built docker image and source code of VulScope.
For ease of use, we provide a detailed document (README.md) to clarify how to prepare inputs for VulScope to perform vulnerability assessment, and further how to run VulScope in the given docker.
To obtain access to this repo, please read our open source policy (i.e., conditions of restricted access to this repo).
==== Files ====
source_code.tar.gz : source code of VulScope
vulscope_base.tar.gz : docker image to prepare inputs of VulScope and run VulScope
Files
Restricted
The record is publicly accessible, but files are restricted to users with access.
Request access
If you would like to request access to these files, please fill out the form below.
You need to satisfy these conditions in order for this request to be accepted:
Recent research shows that, public vulnerability reports (e.g., those achieved by MITRE/NIST) usually contain incomplete information about the software’s vulnerable versions, making users of under-reported vulnerable versions at risk. In light of this, we are glad to release our tool VulScope and dataset for vulnerability assessment to the community, to better understand or mitigate this problem. However, to avoid misuse of our tool and dataset, we apply simple authentication to verify the identity of the user who wants to request access to our source code and dataset. So, if you are interested in VulScope and want to obtain access to our source code and dataset, please read the following instructions and send your request email to Yuan Zhang (yuanxzhang@fudan.edu.cn) and Jiarun Dai (jrdai14@fudan.edu.cn).
======= Instructions about Request Email =======
For Academic Researchers:
If you are a student(or postdoc), please have your advisor (or host) send us an access email. If you are a faculty member, please send us an email from your university email account.
In your email, please include your name, affiliation, and home page (if we do not recognize each other). This information is required only for verification purposes. Please note that if we are unable to determine your identity or affiliation, your request may be ignored.
If your papers or articles use our dataset or our tool, please cite our CCS 2021 paper.
For Industry Researchers:
If you are currently in industry (including research labs), please send us an email from your company’s email account.
In the email, please briefly introduce yourself (e.g., name and title - in case we don’t know each other) and your company.
Mail Content:
In the email, please include a justification letter (PDF format) on official letterhead. The justification letter needs to acknowledge the “VulScope” project from Fudan University and clearly state the reason for requesting the dataset or source code. Also, confirm that the dataset or source code will not be shared with others without our permission.
We emphasize that we will ignore emails that do not follow the above instructions. Please note that we may disclose on the homepage of VulScope(https://seclab-fudan.github.io/VulScope) the list of universities, research labs, and companies that have requested our datasets. Again, you are not allowed to share any samples from our source code/dataset with others without our permission. Sending us an email requesting access to our source code/dataset implies that you are aware of and agree to the above policy.
You are currently not logged in. Do you have an account? Log in here