CodeShield-Security / Serverless-Goat-JavaLinks
Java version of the deliberately vulnerable serverless application Serverless-Goat from https://github.com/OWASP/Serverless-Goat
☆13Updated 4 years ago
Alternatives and similar repositories for Serverless-Goat-Java
Users that are interested in Serverless-Goat-Java are comparing it to the libraries listed below
Sorting:
- Codyze is a static analyzer for Java, C, C++ based on code property graphs☆91Updated last year
- A collection of test cases in the Java language. It contains examples for 112 different CWEs.☆61Updated 4 years ago
- Testability Pattern Catalogs for SAST☆31Updated 11 months ago
- Soot-based taint analysis with internal Java fluent interface for security specifications in fluentTQL implemented with MagpieBridge to s…☆18Updated last year
- Binary rewriting approach with fork server support to fuzz Java applications with afl-fuzz.☆90Updated 7 years ago
- Repository to showcase various configuration recipes with various technologies☆36Updated 3 years ago
- COVA - A static analysis tool to compute path conditions☆40Updated 6 months ago
- Plume is a code representation benchmarking library with options to extract the AST from Java bytecode and store the result in various gr…☆75Updated last year
- Java taint propagation for java. Define tainted sources, sanitizer methods and sinks via aspects.☆28Updated 7 years ago
- Testability Tarpits: the Impact of Code Patterns on the Security Testing of Web Applications (NDSS 2022)☆26Updated last year
- Parser utility to generate ASTs from PHP source code suitable to be processed by Joern.☆15Updated 7 years ago
- Joern Workshops☆29Updated last year
- A static analysis API for finding deserialization attack gadgets☆38Updated 3 years ago
- Evaluation Framework for Dependency Analysis (EFDA)☆44Updated 3 years ago
- CodeQL workshops for GitHub Universe☆96Updated 3 years ago
- Generic SAST Library☆135Updated 7 months ago
- Efficient and Precise Pointer-Tracking Data-Flow Framework☆68Updated last year
- VulZoo: A Comprehensive Vulnerability Intelligence Dataset | ASE 2024 Demo☆66Updated 10 months ago
- Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)☆61Updated 9 months ago
- AFL-based fuzzing for Java☆238Updated 6 years ago
- Static data flow-based analysis of JavaScript files to detect syntactic clones☆23Updated 5 years ago
- A hybrid analysis framework to aid in uncovering deserialization vulnerabilities☆15Updated last year
- A technique for developing Fortify structural rules and characterization rules.☆14Updated 6 years ago
- Pairing Security Advisories with Vulnerable Functions Using Open-Source LLMs - DIMVA '24☆16Updated last year
- The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…☆160Updated last year
- Default query sets for Joern☆27Updated 4 years ago
- 🪐 A Database of Existing Security Vulnerabilities Patches to Enable Evaluation of Techniques (single-commit; multi-language)☆42Updated 9 months ago
- An example repository that demonstrates how the build custom CodeQL bundles that include query customizations through the `Customizations…☆25Updated 3 years ago
- This novel black-box web vulnerability scanner attempts to infer the state machine of the web application.☆19Updated 5 years ago
- Securibench Micro is a benchmark for static analysis tools for security.☆26Updated 7 years ago