NORMA eResearch @NCI Library

Comparing the Capabilities of Ensemble Learning Algorithms and SAST Tools for Effective Code Based Vulnerability Detection

Marath, Ashwathy Ajaykumar (2024) Comparing the Capabilities of Ensemble Learning Algorithms and SAST Tools for Effective Code Based Vulnerability Detection. Masters thesis, Dublin, National College of Ireland.

[thumbnail of Master of Science]
Preview
PDF (Master of Science)
Download (1MB) | Preview
[thumbnail of Configuration Manual]
Preview
PDF (Configuration Manual)
Download (512kB) | Preview

Abstract

Based on the VUDENC and DiverseVul benchmarks, this work evaluates ensemble learning algorithms and SAST tools for software vulnerability detection. Secondary qualitative research data was collected between 2016 and 2024, and quantitative experiments were employed. For handling class imbalance, both Random Forest, XGBoost, LightGBM, and CatBoost ensemble models were experimented on with and without SMOTE. Ensemble models perform better than SAST techniques with XGBoost having the highest ROC-AUC score of 0.76 and Random Forest having stable majority class accuracy. SAST tools were okay for level L concerns but had higher levels of false positives and lower precision. Hybrid techniques can be used in the future to minimize false alarms and enhance immunity to software attacks in ensemble models.

Item Type: Thesis (Masters)
Supervisors:
Name
Email
Moldovan, Arghir Nicolae
UNSPECIFIED
Subjects: Q Science > QA Mathematics > Electronic computers. Computer science
T Technology > T Technology (General) > Information Technology > Electronic computers. Computer science
Q Science > QA Mathematics > Computer software > Computer Security
T Technology > T Technology (General) > Information Technology > Computer software > Computer Security
Q Science > Q Science (General) > Self-organizing systems. Conscious automata > Machine learning
Divisions: School of Computing > Master of Science in Cyber Security
Depositing User: Ciara O'Brien
Date Deposited: 23 Jul 2025 14:50
Last Modified: 23 Jul 2025 14:50
URI: https://norma.ncirl.ie/id/eprint/8223

Actions (login required)

View Item View Item