目前先重点看识别扫描器误报这部分,各人选定看的文章在后面标注下。因为我也没有详细看文章内容,有的文章可能是无关的,讨论下及时删除即可。发现新的文章直接添加即可。
- C and C++ vulnerability exploits and countermeasures
- ALETHEIA- Improving the Usability of Static Security Analysis(史洋洋)
- Classifying False Positive Static Checker Alarms In Continous Integration Using Convolutional Neural Networks(蒋燕)
- Identifying and documenting false positive patterns generated by static code analysis tools(史洋洋)
- Learning a Classifier for False Positive Error Reports Emitted by Static Code Analysis Tools(史洋洋)
- Learning a classifier for prediction of maintainability based on static analysis tools(蒋燕)
- Using Machine Learning Techniques to Classify and Predict Static Code Analysis Tool Warnings(刘子夕)
Using Targeted Symbolic Execution for Reducing False-Positives in Dataflow Analysis(刘子夕)- Using Software Engineering Metrics to Evaluate the Quality of Static Code Analysis Tools(刘子夕)
- Improve Security Using Extensible Lightweight Static Analysis
- ITS4- A Static Vulnerability Scanner for C and C++ Code
- VulDeePecker A Deep Learning-Based System for Vulnerability Detection
- 安全漏洞众包验证平台的设计与实现_仲逸秋