GeekMasher / security-codeql

Related projects: ⓘ

• advanced-security / codeql-queries
  [Deprecated] GitHub's Field Team's CodeQL Custom Queries, Suites, and Configurations. See GitHubSecurityLab/CodeQL-Community-Packs instea…
  ☆80Updated 4 months ago
• advanced-security / custom-codeql-bundle
  An example repository that demonstrates how the build custom CodeQL bundles that include query customizations through the `Customizations…
  ☆25Updated 2 years ago
• GitHubSecurityLab / CodeQL-Community-Packs
  Collection of community-driven CodeQL query, library and extension packs
  ☆64Updated last month
• githubuniverseworkshops / codeql
  CodeQL workshops for GitHub Universe
  ☆91Updated last year
• testable-eu / sast-testability-patterns
  Testability Pattern Catalogs for SAST
  ☆29Updated 6 months ago
• advanced-security / awesome-codeql
  A curated list of awesome CodeQL resources.
  ☆15Updated 5 months ago
• GitHubSecurityLab / gh-mrva
  Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)
  ☆49Updated 5 months ago
• tuannq2299 / semgrep-rules
  A collection of Semgrep rules which followed security guidelines for .NET and Java.
  ☆12Updated 2 years ago
• GitHubSecurityLab / codeql-zero-to-hero
  CodeQL zero to hero blog post series challenges
  ☆80Updated last month
• trailofbits / codeql-queries
  CodeQL queries developed by Trail of Bits
  ☆72Updated 3 weeks ago
• advanced-security / gh-codeql-scan
  GH CLI CodeQL Scan Extension
  ☆17Updated this week
• bahruzjabiyev / frameshifter
  Grammar-based HTTP/2 fuzzer with mutation ability
  ☆40Updated 2 years ago
• elManto / StaticAnalysisQueries
  A set of Code-ql/Joern queries to find vulnerabilities
  ☆53Updated 3 years ago
• plume-oss / plume
  Plume is a code representation benchmarking library with options to extract the AST from Java bytecode and store the result in various gr…
  ☆70Updated this week
• TQRG / secbench
  🪐 A Database of Existing Security Vulnerabilities Patches to Enable Evaluation of Techniques (single-commit; multi-language)
  ☆33Updated last year
• whitesquirrell / C0deVari4nt
  A variant analysis and visualisation tool that scans codebases for similar vulnerabilities
  ☆69Updated 2 years ago
• Fraunhofer-AISEC / cpg-neo4j
  Neo4J visualisation tool for the Code Property Graph
  ☆14Updated 3 years ago
• GCMiner / GCMiner
  Artifact for ICSE 2023
  ☆44Updated last year
• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆138Updated 6 months ago
• microsoft / codeql-container
  Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.
  ☆102Updated 9 months ago
• advanced-security / codeql-bundle-action
  Action to retrofit a CodeQL bundle with additional queries, libraries, and customizations
  ☆19Updated 4 months ago
• AlexAltea / codeql-python
  Python bindings for CodeQL CLI
  ☆48Updated 3 years ago
• Fraunhofer-AISEC / codyze
  Codyze is a static analyzer for Java, C, C++ based on code property graphs
  ☆86Updated this week
• s3c2 / UntrustIDE
  ☆12Updated 2 months ago
• NUS-Curiosity / VulZoo
  VulZoo: A Comprehensive Vulnerability Intelligence Dataset (ASE 2024 Demo)
  ☆19Updated last month
• GeekMasher / ghastoolkit
  GitHub Advanced Security Python Toolkit
  ☆12Updated this week
• joernio / query-database
  Default query sets for Joern
  ☆24Updated 2 years ago
• u21h2 / AutoSpear
  AutoSpear
  ☆52Updated 8 months ago
• Yuning-J / VulnerabilityClassifier
  Severity scoring and exploit categorisation for vulnerability reports using machine-learning tools.
  ☆19Updated last year
• Contrast-Security-OSS / go-test-bench
  Intentionally vulnerable Go web app.
  ☆42Updated 9 months ago