《深入理解Semgrep》Finding vulnerabilities with Semgrep.
☆58Jul 20, 2023Updated 2 years ago
Alternatives and similar repositories for Semgrep
Users that are interested in Semgrep are comparing it to the libraries listed below
Sorting:
- ☆10Jul 21, 2022Updated 3 years ago
- Java安全相关,目前主要是CC链研究☆10Sep 1, 2022Updated 3 years ago
- GitHub项目监控 && CodeQL自动扫描 (GitHub project monitoring && CodeQL automatic analysis)☆467Jan 19, 2025Updated last year
- ☆22Dec 5, 2022Updated 3 years ago
- Android Security Bug Queries for CheckMarx☆20Sep 13, 2022Updated 3 years ago
- 利用angr去除ollvm的虚假控制流☆14Mar 20, 2021Updated 5 years ago
- A list for Spring Security☆128Jan 16, 2024Updated 2 years ago
- 大模型辅助SAST静态代码分析的Demo系统☆13Feb 19, 2025Updated last year
- ☆14Aug 4, 2021Updated 4 years ago
- 《深�入理解CodeQL》Finding vulnerabilities with CodeQL.☆1,758Nov 21, 2023Updated 2 years ago
- 一本用代码写出来的Fuzzing书籍:The Fuzzing Book☆13Sep 30, 2023Updated 2 years ago
- 《深入理解SAST静态应用安全测试》Static Application Security Testing.☆389Sep 28, 2025Updated 5 months ago
- ☆14Mar 9, 2026Updated last week
- Code audit (code review) with VIM.☆17Jan 3, 2025Updated last year
- An extension to use Semgrep inside Burp Suite.☆88May 23, 2025Updated 9 months ago
- ☆10May 17, 2023Updated 2 years ago
- 自动反编译闭源应用,创建codeql数据库☆316Mar 2, 2022Updated 4 years ago
- Tao(道)一款用于java语言函数调用关系生成的�工具,致力于提高java代码审计效率。☆11Jul 2, 2024Updated last year
- A declarative static analysis tool for jvm bytecode based Datalog like CodeQL☆345Jan 6, 2024Updated 2 years ago
- jsp版sqlilab 1-21关☆20Jun 21, 2022Updated 3 years ago
- A CAT called tabby ( Code Analysis Tool )☆1,641Jan 17, 2026Updated 2 months ago
- CVE-2024-30056 Microsoft Edge (Chromium-based) Information Disclosure Vulnerability☆17May 27, 2024Updated last year
- java source code static code analysis and danger function identify prog☆534Feb 18, 2019Updated 7 years ago
- neo4j plugin of ByteCodeDL for the IntelliJ Platform. ByteCodeDL-Neo4j-IDEA-Plugin☆16Dec 28, 2023Updated 2 years ago
- javaGGC for generate commons.collections gadget chain☆12Nov 10, 2021Updated 4 years ago
- IDOR bypass fuzz 权限绕过burp 插件 fuzz (shiro 等)☆27Sep 1, 2021Updated 4 years ago
- poc or exp of some famous vulnerability☆14Mar 5, 2014Updated 12 years ago
- BlockChain Security☆27Jul 14, 2021Updated 4 years ago
- xAST评价体系,让安全工具不再“黑盒”. The xAST evaluation benchmark makes security tools no longer a "black box".☆467Jan 15, 2026Updated 2 months ago
- CodeQL分析闭源Jar包脚本,基于Apache Ant构建CodeQL数据库☆41Aug 19, 2022Updated 3 years ago
- This repo contains the files required to perform a CSRF attack using Flash and HTTP 307 redirections.☆78Feb 5, 2018Updated 8 years ago
- Some ReadObject Sink With JDBC☆243May 8, 2024Updated last year
- 承影用的 nuclei 漏扫模板☆15Jun 11, 2023Updated 2 years ago
- 记录学习codeql的过程☆395Jun 9, 2023Updated 2 years ago
- Lessons for syntaxflow zero to hero☆55Sep 14, 2024Updated last year
- 灯塔v2.6.2_docker版本☆15Oct 13, 2025Updated 5 months ago
- Collections of student projects to find execution path in binary program via taint analysis using Ghidra☆17Sep 25, 2022Updated 3 years ago
- CodeQL extractor for java, which don't need to compile java source☆348Nov 25, 2022Updated 3 years ago
- 东莞理工学院勤工俭学自动考勤助手☆11Feb 1, 2022Updated 4 years ago