Vulnerability Test Suite Generator (VTSG) Version 3
Paul E. Black, William Mentzer, Elizabeth Fong, Bertrand Stivalet
The Vulnerability Test Suite Generator (VTSG) Version 3 can create vast numbers of synthetic programs with and without specific flaws or vulnerabilities. Such programs are useful for measuring static analysis tools. VTSG was designed by the Software Assurance Metrics and Tool Evaluation (SAMATE) team and originally implemented by students at TELECOM Nancy. The latest version is structured to be able to generate vulnerable and nonvulnerable synthetic programs expressing specific flaws in any programming language. It has libraries to generate PHP, C#, and Python programs. This document may help if you are trying to generate test cases in PHP, C#, or Python, adding new complexities or flaws or vulnerability, or modifying VTSG to have new capabilities or to generate test cases in other programming languages.
, Mentzer, W.
, Fong, E.
and Stivalet, B.
Vulnerability Test Suite Generator (VTSG) Version 3, NIST Interagency/Internal Report (NISTIR), National Institute of Standards and Technology, Gaithersburg, MD, [online], https://doi.org/10.6028/NIST.IR.8493, https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=956521
(Accessed December 3, 2023)