GeekMasher / security-codeqlLinks
CodeQL Security Queries
☆27Updated last week
Alternatives and similar repositories for security-codeql
Users that are interested in security-codeql are comparing it to the libraries listed below
Sorting:
- [Deprecated] GitHub's Field Team's CodeQL Custom Queries, Suites, and Configurations. See GitHubSecurityLab/CodeQL-Community-Packs instea…☆85Updated last year
- CodeQL zero to hero blog post series challenges☆159Updated 2 months ago
- Testability Pattern Catalogs for SAST☆31Updated 9 months ago
- Collection of community-driven CodeQL query, library and extension packs☆192Updated 2 weeks ago
- A curated list of awesome CodeQL resources.☆57Updated 3 months ago
- Source Code Vulnerability Detection Tools(SCVDT)provides a vulnerable code database, vulnerability detection service for Java and C/C++ p…☆118Updated 4 years ago
- VulZoo: A Comprehensive Vulnerability Intelligence Dataset | ASE 2024 Demo☆65Updated 8 months ago
- A set of Code-ql/Joern queries to find vulnerabilities☆65Updated 4 years ago
- CodeQL workshops for GitHub Universe☆96Updated 3 years ago
- Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.☆121Updated 2 years ago
- Soot-based taint analysis with internal Java fluent interface for security specifications in fluentTQL implemented with MagpieBridge to s…☆18Updated 10 months ago
- 🪐 A Database of Existing Security Vulnerabilities Patches to Enable Evaluation of Techniques (single-commit; multi-language)☆42Updated 7 months ago
- Testability Tarpits: the Impact of Code Patterns on the Security Testing of Web Applications (NDSS 2022)☆25Updated last year
- Codyze is a static analyzer for Java, C, C++ based on code property graphs☆89Updated 10 months ago
- Hey folks, this is a repository for papers on LLM for Vuln. Detection area☆71Updated 8 months ago
- A technique for developing Fortify structural rules and characterization rules.☆14Updated 6 years ago
- ObjLupAnsys is a tool to detect prototype pollution vulnerabilities in Node.js packages. This project is written in Python and JavaScript…☆25Updated 4 years ago
- Witcher is the first framework for using AFL to fuzz web applications.☆102Updated 2 years ago
- Auto-generated CodeQL rules for matching CVE vulnerabilities and variants.☆183Updated last year
- An example repository that demonstrates how the build custom CodeQL bundles that include query customizations through the `Customizations…☆25Updated 3 years ago
- The repository has collected about 10,000 malicious pypi packages. This dataset is the work of the ASE 2023 paper "An Empirical Study of…☆111Updated last month
- PatchEval: A New Benchmark for Evaluating LLMs on Patching Real-World Vulnerabilities☆161Updated 2 weeks ago
- Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)☆60Updated 7 months ago
- ODGen is a JavaScript Static Analysis tool to detect multiple types of vulnerabilities in Node.js packages.☆160Updated last year
- JAW: A Graph-based Security Analysis Framework for Client-side JavaScript☆114Updated 2 months ago
- OSS-Fuzz vulnerabilities for OSV.☆166Updated this week
- YuraScanner☆66Updated 9 months ago
- A neurosymbolic framework for vulnerability detection in code☆272Updated last week
- YASA is an open-source static program analysis project. Its core innovation lies in a unified intermediate representation called UAST, d…☆201Updated this week
- Grammar-based HTTP/2 fuzzer with mutation ability☆47Updated 3 years ago