Paper ID: 2411.06493

LProtector: An LLM-driven Vulnerability Detection System

Ze Sheng, Fenghua Wu, Xiangwu Zuo, Chao Li, Yuxin Qiao

This paper presents LProtector, an automated vulnerability detection system for C/C++ codebases driven by the large language model (LLM) GPT-4o and Retrieval-Augmented Generation (RAG). As software complexity grows, traditional methods face challenges in detecting vulnerabilities effectively. LProtector leverages GPT-4o's powerful code comprehension and generation capabilities to perform binary classification and identify vulnerabilities within target codebases. We conducted experiments on the Big-Vul dataset, showing that LProtector outperforms two state-of-the-art baselines in terms of F1 score, demonstrating the potential of integrating LLMs with vulnerability detection.

Submitted: Nov 10, 2024

Topics

Complexity Matter
Security Vulnerability

Links

arXiv PDF