generate facts from bytecode (source is https://github.com/plast-lab/doop-mirror/tree/master/generators)
☆23Nov 24, 2024Updated last year
Alternatives and similar repositories for soot-fact-generator
Users that are interested in soot-fact-generator are comparing it to the libraries listed below
Sorting:
- neo4j plugin of ByteCodeDL for the IntelliJ Platform. ByteCodeDL-Neo4j-IDEA-Plugin☆16Dec 28, 2023Updated 2 years ago
- Plume is a code representation benchmarking library with options to extract the AST from Java bytecode and store the result in various gr…☆77Oct 14, 2024Updated last year
- A neo4j procedure for tabby☆137May 17, 2025Updated 9 months ago
- Unofficial Dockerfile and scripts for building CodeQL databases for the OpenJDK☆49Jan 7, 2024Updated 2 years ago
- 之前方便自己研究RASP原理和绕过时顺手写的,用于快速启动和重置RASP环境☆71Oct 13, 2024Updated last year
- Detecting Flow of Sensitive Data in Mini-Programs with Static Taint Analysis☆82Mar 19, 2024Updated last year
- Tai-e的Web插件☆23Jun 11, 2024Updated last year
- ☆146Jan 16, 2023Updated 3 years ago
- ☆60May 22, 2023Updated 2 years ago
- ☆78Jan 12, 2021Updated 5 years ago
- 基于Java ASM技术和GadgetInspector的原理,尝试实现一个自动Java代码审计工具。目前做到了可控参数分析和数据流跟踪分析☆39Oct 26, 2021Updated 4 years ago
- Spring Cloud Netflix Hystrix Dashboard template resolution vulnerability CVE-2021-22053☆37Dec 15, 2022Updated 3 years ago
- A declarative static analysis tool for jvm bytecode based Datalog like CodeQL☆345Jan 6, 2024Updated 2 years ago
- Use java instrument API without JAR file☆47Jun 19, 2022Updated 3 years ago
- 在原版nps的基础上,增加了nps探测,以及对应的利用方式(如获取cookie,页面等),进行一些简单的二开。未经过大量测试,可能存在bug。☆21Aug 5, 2025Updated 6 months ago
- 静态程序分析工具 主要生成方法的CFG和.java文件的AST☆132Jul 12, 2023Updated 2 years ago
- ☆274Oct 28, 2021Updated 4 years ago
- 编译原理学习代码仓库☆23Jan 17, 2022Updated 4 years ago
- Automatically scan jar packages by using ast to find fastjson gadgets. In particular, this project is limited to mining Gadgets that may …☆49Mar 8, 2022Updated 3 years ago
- The official repo of Doop, the declarative pointer analysis framework.☆203Updated this week
- ☆155Jun 18, 2024Updated last year
- 利用链、漏洞检测工具☆373Jul 31, 2024Updated last year
- A web3 Security Tutorial☆17Oct 25, 2024Updated last year
- javaGGC for generate commons.collections gadget chain☆12Nov 10, 2021Updated 4 years ago
- Burp插件,转发处理☆14Jan 17, 2023Updated 3 years ago
- ☆294May 7, 2022Updated 3 years ago
- CodeQL extractor for java, which don't need to compile java source☆348Nov 25, 2022Updated 3 years ago
- Finding Java gadget chains with CodeQL☆184Jan 14, 2025Updated last year
- Java web路由内存分析工具☆437May 22, 2025Updated 9 months ago
- System using the Analysis Query Language☆14Jun 20, 2022Updated 3 years ago
- Thymeleaf SSTI Bypass☆13Nov 24, 2021Updated 4 years ago
- gitlab version index☆64Nov 10, 2021Updated 4 years ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆357Sep 20, 2022Updated 3 years ago
- 一款通过污点追踪发现Jsp webshell的工具(A tool to find Jsp Webshell through stain tracking)☆176Jan 4, 2022Updated 4 years ago
- Hessian UTF-8 Overlong Encoding☆21Mar 9, 2024Updated last year
- database of pocassist(漏洞库)☆16Jun 16, 2021Updated 4 years ago
- WALA 学习笔记☆14Aug 8, 2023Updated 2 years ago
- Efficient and Precise Pointer-Tracking Data-Flow Framework☆68Dec 10, 2024Updated last year
- Java表达式语句生成器☆194Oct 9, 2023Updated 2 years ago