fuzzing-networked-software-data-and-scripts
Description
# fuzzing_activity.db This file consists of data mined using version 0.0.1 of cve-binner (https://gitlab.com/zluudg/cve-binner). It is a SQLite3 database with three tables: the first table is a list of software projects and the corresponding URLs for their source code repositories, the second is a list of CVE identifiers for vulnerabilities related to the projects and the last table is a list of git-commits i.e. changes made to the projects' source code, essentially. # make_plots.py This file is a script for plotting data from "fuzzing_activity.db". It outputs a number of PDFs with plots showing how the projects' have evolved over time. It also outputs a number of tables that can be used with LaTeX. # requirements.txt This file is the list of external Python libraries that "make_plots.py" depends on. They need to be installed before "make_plots.py" can perform its job.
Files
Steps to reproduce
To recreate the plots and the analysis based on the data in "fuzzing_activity.db", do the following. 1. Download the three files from this dataset into the same folder 2. Create two folders, "data" and "figures" 3. Move "fuzzing_activity.db" to "data" 4. Create a Python virtual environment 5. Install the dependencies in "requirements.txt" 6. Run "make_plots.py" 7. Look at the tables and figures in "figures" On a UNIX-like system, the steps would be something like this: 1. Download and extract the files and make sure you are in the same folder as the extracted contents 2. mkdir data && mkdir figures 3. mv fuzzing_activity.db data/ 4. python -m venv venv && source venv/bin/activate 5. pip install -r requirements.txt 6. ./make_plots.py 7. Look at the contents in "figures"