🔒SecurityRepoIndex

VulnLLM

LLM for source code vulnerability detection

3.6/ 5780 GitHub starsPythonMIT

⚡ TL;DR

What
LLM for source code vulnerability detection
Who
Devs, AppSec
Catch
Hallucinated vulns
Verdict
⭐⭐⭐⭐ Recommended

🎯 The Problem It Solves

Devs, AppSec need llm for source code vulnerability detection. This tool solves that problem simply and effectively.

🔧 How It Works

Install VulnLLM and follow the quick start steps below to get results in minutes.

🚀 Installation & Quick Start

Installation

pip install vulnllm

Quick Start

  1. pip install vulnllm
  2. vulnllm scan --path ./src

✅ Pros

  • Fast static analysis
  • Multiple languages
  • Low false negatives

❌ Cons

  • Hallucinated vulns
  • No context
  • Needs validation

💬 Practitioner Verdict

"Good first-pass — verify findings manually."
Emmanuel, Security Reviewer

📊 Specifications

Language
Python
License
MIT
Platform
Linux, macOS, Windows
Kill Chain
Multiple
MITRE ATT&CK
T1595, T1592

💰 Pricing Reality

Free (OSS).

👥 Community Health

Stars780
Forks97
Contributors15
Health Score5.2/10

🏷️ Tags

AgentsLLM

🔗 Similar Tools