GeekMasher / security-codeqlLinks
CodeQL Security Queries
☆27Updated last week
Alternatives and similar repositories for security-codeql
Users that are interested in security-codeql are comparing it to the libraries listed below
Sorting:
- [Deprecated] GitHub's Field Team's CodeQL Custom Queries, Suites, and Configurations. See GitHubSecurityLab/CodeQL-Community-Packs instea…☆85Updated last year
- CodeQL zero to hero blog post series challenges☆149Updated last month
- Testability Pattern Catalogs for SAST☆31Updated 8 months ago
- Collection of community-driven CodeQL query, library and extension packs☆190Updated last week
- VulZoo: A Comprehensive Vulnerability Intelligence Dataset | ASE 2024 Demo☆65Updated 7 months ago
- Source Code Vulnerability Detection Tools(SCVDT)provides a vulnerable code database, vulnerability detection service for Java and C/C++ p…☆117Updated 4 years ago
- ODGen is a JavaScript Static Analysis tool to detect multiple types of vulnerabilities in Node.js packages.☆157Updated last year
- The repository has collected about 10,000 malicious pypi packages. This dataset is the work of the ASE 2023 paper "An Empirical Study of…☆107Updated 2 weeks ago
- 🪐 A Database of Existing Security Vulnerabilities Patches to Enable Evaluation of Techniques (single-commit; multi-language)☆42Updated 6 months ago
- A set of Code-ql/Joern queries to find vulnerabilities☆65Updated 4 years ago
- Testability Tarpits: the Impact of Code Patterns on the Security Testing of Web Applications (NDSS 2022)☆25Updated last year
- ☆29Updated 6 months ago
- CodeQL workshops for GitHub Universe☆96Updated 2 years ago
- Soot-based taint analysis with internal Java fluent interface for security specifications in fluentTQL implemented with MagpieBridge to s…☆18Updated 9 months ago
- Codyze is a static analyzer for Java, C, C++ based on code property graphs☆89Updated 9 months ago
- Auto-generated CodeQL rules for matching CVE vulnerabilities and variants.☆181Updated last year
- YASA is an open-source static program analysis project. Its core innovation lies in a unified intermediate representation called UAST, d…☆153Updated this week
- OSS-Fuzz vulnerabilities for OSV.☆162Updated this week
- A curated list of awesome CodeQL resources.☆53Updated 2 months ago
- Grammar-based HTTP/2 fuzzer with mutation ability☆47Updated 3 years ago
- Hey folks, this is a repository for papers on LLM for Vuln. Detection area☆68Updated 7 months ago
- CodeQL library and queries for iterator invalidation☆22Updated 4 years ago
- Link: Black-Box Detection of Cross-Site Scripting Vulnerabilities Using Reinforcement Learning☆24Updated 3 years ago
- The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…☆153Updated last year
- Witcher is the first framework for using AFL to fuzz web applications.☆101Updated last year
- Python library for CPGQL server☆37Updated last year
- Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.☆119Updated last year
- ObjLupAnsys is a tool to detect prototype pollution vulnerabilities in Node.js packages. This project is written in Python and JavaScript…☆25Updated 3 years ago
- A neurosymbolic framework for vulnerability detection in code☆251Updated last week
- ☆106Updated last year