DESSERT Research Lab (University of Naples Federico II, Italy)

All

46 repositories

Human_vs_AI_Code_Quality
Public
This repository allows the replication of our study "Human-Written vs. AI-Generated Code: A Large-Scale Study of Defects, Vulnerabilities, and Complexity" accepted for publication at The 36th IEEE International Symposium on Software Reliability Engineering (ISSRE 2025).
software-security code-complexity large-language-models ai-code-generation software-defects orthogonal-defect-classification
Python
•
GNU General Public License v3.0
•0•0•0•0•Updated Aug 13, 2025Aug 13, 2025
violent-python
Public
This repo contains a manually curated dataset, where a sample contains a piece of Python code from an offensive software, and its corresponding description in natural language (plain English).
GNU General Public License v3.0
•1•3•0•0•Updated Aug 12, 2025Aug 12, 2025
cosmos
Public
A plug and play Hypervisor agnostic fault injector for hardware-assisted virtualization
C
•
MIT License
•0•1•0•0•Updated Jul 26, 2025Jul 26, 2025
PyResBugs
Public
A curated dataset of thousands residual Python bugs with paired fixed versions and multi-level natural language descriptions for fault injection and repair research.
MIT License
•0•1•0•0•Updated Jul 18, 2025Jul 18, 2025
preempt-k8s
Public
Rust
•0•0•0•0•Updated Jul 12, 2025Jul 12, 2025
runphi
Public
0•0•0•0•Updated Jun 25, 2025Jun 25, 2025
DeVAIC
Public
DeVAIC (Detection of Vulnerabilities in AI-generated Code) is a static code analyzer for security issues in Python code snippets. It detects vulnerabilities belonging to the OWASP categories listed in the Top 10 of 2021.
python security static-code-analysis static-analysis static-analyzer security-scanner security-tools sast
Shell
•
GNU General Public License v3.0
•1•14•0•0•Updated Jun 20, 2025Jun 20, 2025
generative-ai-cybersecurity
Public
This repository contains the materials and scripts for the talk titled "Generative AI in Cybersecurity: Generating Offensive Code from Natural Language" by Pietro Liguori, University of Naples Federico II, DESSERT group.
offensive-security prompt-engineering generative-ai
Python
•
GNU General Public License v3.0
•0•4•0•0•Updated Jun 2, 2025Jun 2, 2025
PatchitPy
Public
Securing AI Code Generation Through Automated Pattern-Based Patching
Shell
•0•0•0•0•Updated May 19, 2025May 19, 2025
Concept-based-Disinformation-CTI
Public
Jupyter Notebook
•0•0•0•0•Updated Apr 14, 2025Apr 14, 2025
CTI-HAL
Public
1•11•0•0•Updated Apr 1, 2025Apr 1, 2025
kubefence
Public
0•2•0•0•Updated Mar 26, 2025Mar 26, 2025
Robustness-of-AI-Offensive-Code-Generators
Public
Python
•
GNU General Public License v3.0
•0•1•0•0•Updated Feb 26, 2025Feb 26, 2025
Software-Exploits-with-Contextual-Information
Public
Python
•
GNU General Public License v3.0
•0•1•0•0•Updated Jan 28, 2025Jan 28, 2025
ACCA
Public
Automating the Correctness Assessment of AI-generated Assembly Code for Security Contexts
Assembly
•
GNU General Public License v3.0
•0•0•0•0•Updated Nov 13, 2024Nov 13, 2024
PureEdgeSim
Public
PureEdgeSim: A simulation framework for performance evaluation of cloud, fog, and pure edge computing environments.
Java
•
GNU General Public License v3.0
•81•0•0•0•Updated Nov 7, 2024Nov 7, 2024
Targeted-Data-Poisoning-Attacks
Public
This repository contains the code, the dataset and the experimental results related to the paper "Vulnerabilities in AI Code Generators: Exploring Targeted Data Poisoning Attacks" accepted for publication at The 32nd IEEE/ACM International Conference on Program Comprehension (ICPC 2024).
python dataset code-generation vulnerabilities nmt data-poisoning-attacks codebert software-security-assessment
Python
•
GNU General Public License v3.0
•2•11•0•0•Updated Aug 5, 2024Aug 5, 2024
CTI-Document-Analyzer
Public
HTML
•
GNU General Public License v3.0
•0•1•0•0•Updated Jul 26, 2024Jul 26, 2024
xen_temporal_isolation_data
Public
Python
•0•0•0•0•Updated Jul 4, 2024Jul 4, 2024
powershell-offensive-code-generation
Public
PowerShell
•
GNU General Public License v3.0
•1•5•0•0•Updated May 22, 2024May 22, 2024
powershell-offensive-code-generation-Artifact
Public
Jupyter Notebook
•
GNU General Public License v3.0
•0•1•0•0•Updated May 22, 2024May 22, 2024
Laccolith
Public
Rust
•0•1•0•0•Updated Mar 5, 2024Mar 5, 2024
train-ticket
Public
Train Ticket - A Benchmark Microservice System
Java
•
Apache License 2.0
•408•0•0•0•Updated Mar 3, 2024Mar 3, 2024
iris
Public
Repository linked to DSN 2023 paper "IRIS: a Record and Replay Framework to Enable Hardware-assisted Virtualization Fuzzing"
C
•
GNU General Public License v3.0
•2•3•0•0•Updated Jan 19, 2024Jan 19, 2024
DeepSample
Public
Java
•1•2•0•0•Updated Dec 18, 2023Dec 18, 2023
DAIC
Public
Python
•0•0•0•0•Updated Dec 12, 2023Dec 12, 2023
SEEliDS
Public
Python
•0•0•0•0•Updated Aug 25, 2023Aug 25, 2023
Shellcode_IA32
Public
Shellcode_IA32 is a dataset consisting of challenging but common assembly instructions, collected from real shellcodes, with their natural language descriptions. The dataset can be used for neural machine translation tasks to automatically generate software exploits from natural language.
linux dataset shellcode nasm nmt ia32 nasm-assembly exploit-development nasm-language ia32-assembly
GNU General Public License v3.0
•2•37•0•0•Updated Jul 19, 2023Jul 19, 2023
OpenStack-Fault-Injection-Environment
Public
Tools to repeat the fault-injection experiments presented in the paper "How Bad Can a Bug Get? An Empirical Analysis of Software Failures in the OpenStack Cloud Computing Platform" (ESEC/FSE '19).
openstack fault-injection artifact
Shell
•
GNU Affero General Public License v3.0
•3•7•0•0•Updated Mar 9, 2023Mar 9, 2023
PySA2
Public
PySA2 is the Python Source-code Analyzer for Python 2.7 that exploits Python AST
HTML
•
GNU General Public License v3.0
•1•1•0•2•Updated Dec 8, 2022Dec 8, 2022