Firebasky / CodeqlLearn

记录学习codeql的过程

☆374

Alternatives and similar repositories for CodeqlLearn:

Users that are interested in CodeqlLearn are comparing it to the libraries listed below

ice-doom / codeql_compile
自动反编译闭源应用，创建codeql数据库
☆302Updated 3 years ago
waderwu / extractor-java
CodeQL extractor for java, which don't need to compile java source
☆336Updated 2 years ago
l4yn3 / micro_service_seclab
Java漏洞靶场
☆338Updated last year
TheKingOfDuck / SinkFinder
闭源系统半自动漏洞挖掘工具，针对 jar/war/zip 进行静态代码分析，输出从source到sink的可达路径。LLM将验证路径可达性，并根据上下文给出该路径可信分数
☆422Updated 2 months ago
l3yx / Choccy
GitHub项目监控 && CodeQL自动扫描 (GitHub project monitoring && CodeQL automatic analysis)
☆432Updated 2 months ago
5wimming / gadgetinspector
利用链、漏洞检测工具
☆367Updated 7 months ago
kyo-w / router-router
Java web路由内存分析工具
☆430Updated 3 months ago
SummerSec / learning-codeql
CodeQL Java 全网最全的中文学习资料
☆761Updated 3 years ago
su18 / hack-fastjson-1.2.80
☆504Updated 2 years ago
Whoopsunix / JavaRce
Common Exploitation Techniques for Java RCE Vulnerabilities in Real-World Scenarios | 实战场景较通用的 Java Rce 相关漏洞的利用方式
☆507Updated 2 weeks ago
ZhuriLab / Yi
项目监控工具以及 Codeql 自动运行
☆307Updated last year
ice-doom / CodeQLRule
个人使用CodeQL编写的一些规则
☆176Updated 2 years ago
twosmi1e / Static-Analysis-and-Automated-Code-Audit
静态分析及代码审计自动化相关资料收集
☆291Updated 2 years ago
xhycccc / Struts2-Vuln-Demo
Struts2漏洞实例源码
☆205Updated 4 years ago
zema1 / ysoserial
A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
☆355Updated 2 years ago
nosafer / nosafer.github.io
在线漏洞平台
☆196Updated 4 years ago
HackGolang / HackGolang
《Go语言安全-只有Go安全才能拯救地球》Only Golang Security Can Save The Earth.
☆171Updated last year
su18 / JDBC-Attack
JDBC Connection URL Attack
☆405Updated 3 years ago
datouo / CTF-Java-Gadget
CTF-Java-Gadget专注于收集CTF中Java赛题的反序列化片段
☆248Updated 3 months ago
rebeyond / JNDInjector
一个高度可定制化的JNDI和Java反序列化利用工具
☆461Updated 2 years ago
Y4er / dotnet-deserialization
dotnet 反序列化学习笔记
☆449Updated last year
nbxiglk0 / Note
笔记
☆9Updated 2 months ago
Bl0omZ / JNDIEXP
JNDI在java高版本的利用工具,FUZZ利用链
☆549Updated 2 years ago
X1r0z / JNDIMap
JNDI 注入利用工具, 支持 RMI, LDAP 和 LDAPS 协议, 包含多种高版本 JDK 绕过方式 | A JNDI injection exploit tool that supports RMI, LDAP and LDAPS protocols, inclu…
☆383Updated 5 months ago
safe6Sec / CodeqlNote
Codeql学习笔记
☆864Updated 2 years ago
Wker666 / wJa
java decompile audit tools
☆224Updated 2 years ago
kento996 / xianzhi_assistant
这是一个基于先知社区知识构建的向量知识库
☆218Updated 7 months ago
webraybtl / CodeQLpy
CodeQLpy是一款基于CodeQL实现的半自动化代码审计工具，目前仅支持java语言。实现从源码反编译，数据库生成，脆弱性发现的全过程，可以辅助代码审计人员快速定位源码可能存在的漏洞。
☆775Updated last year
su18 / MemoryShell
JavaWeb MemoryShell Inject/Scan/Killer/Protect Research & Exploring
☆608Updated 3 years ago
kezibei / Urldns
☆316Updated 7 months ago