GeekMasher / security-codeqlLinks
CodeQL Security Queries
☆27Updated this week
Alternatives and similar repositories for security-codeql
Users that are interested in security-codeql are comparing it to the libraries listed below
Sorting:
- [Deprecated] GitHub's Field Team's CodeQL Custom Queries, Suites, and Configurations. See GitHubSecurityLab/CodeQL-Community-Packs instea…☆85Updated last year
- A curated list of awesome CodeQL resources.☆66Updated this week
- CodeQL zero to hero blog post series challenges☆163Updated 3 months ago
- Testability Pattern Catalogs for SAST☆31Updated 10 months ago
- Source Code Vulnerability Detection Tools(SCVDT)provides a vulnerable code database, vulnerability detection service for Java and C/C++ p…☆118Updated 4 years ago
- CodeQL workshops for GitHub Universe☆96Updated 3 years ago
- Collection of community-driven CodeQL query, library and extension packs☆199Updated last month
- A set of Code-ql/Joern queries to find vulnerabilities☆66Updated 4 years ago
- Testability Tarpits: the Impact of Code Patterns on the Security Testing of Web Applications (NDSS 2022)☆25Updated last year
- ReDoSHunter: A Combined Static and Dynamic Approach for Regular Expression DoS Detection☆81Updated 3 years ago
- Soot-based taint analysis with internal Java fluent interface for security specifications in fluentTQL implemented with MagpieBridge to s…☆18Updated 11 months ago
- VulZoo: A Comprehensive Vulnerability Intelligence Dataset | ASE 2024 Demo☆66Updated 9 months ago
- Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)☆62Updated 9 months ago
- A technique for developing Fortify structural rules and characterization rules.☆14Updated 6 years ago
- ODGen is a JavaScript Static Analysis tool to detect multiple types of vulnerabilities in Node.js packages.☆161Updated last year
- 🪐 A Database of Existing Security Vulnerabilities Patches to Enable Evaluation of Techniques (single-commit; multi-language)☆42Updated 9 months ago
- ☆19Updated 2 years ago
- ☆30Updated 8 months ago
- An example repository that demonstrates how the build custom CodeQL bundles that include query customizations through the `Customizations…☆25Updated 3 years ago
- Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.☆123Updated 2 years ago
- Auto-generated CodeQL rules for matching CVE vulnerabilities and variants.☆184Updated last year
- FUGIO: Automatic Exploit Generation for PHP Object Injection Vulnerabilities☆97Updated 2 years ago
- Codyze is a static analyzer for Java, C, C++ based on code property graphs☆91Updated 11 months ago
- Works about detecting vulnerable using ML.☆87Updated 5 years ago
- This project runs a Model Context Protocol (MCP) server that wraps the CodeQL query server. It enables tools like [Cursor](https://cursor…☆126Updated 9 months ago
- Grammar-based HTTP/2 fuzzer with mutation ability☆47Updated 3 years ago
- CodeQL library and queries for iterator invalidation☆22Updated 4 years ago
- Witcher is the first framework for using AFL to fuzz web applications.☆103Updated 2 years ago
- The repository has collected about 10,000 malicious pypi packages. This dataset is the work of the ASE 2023 paper "An Empirical Study of…☆113Updated 2 months ago
- Pairing Security Advisories with Vulnerable Functions Using Open-Source LLMs - DIMVA '24☆16Updated last year