CodeQL Security Queries
☆27Updated this week
Alternatives and similar repositories for security-codeql
Users that are interested in security-codeql are comparing it to the libraries listed below
Sorting:
- CodeQL library and queries for iterator invalidation☆22May 5, 2021Updated 4 years ago
- tree-sitter grammar for the CodeQL language☆34Aug 29, 2025Updated 6 months ago
- Put the power of CodeQL in your pocket, take it with you to any CI 🚀☆12Oct 27, 2023Updated 2 years ago
- ☆14Mar 4, 2024Updated last year
- Jess is short for Joern extended by Semantic Slicing. This tool allows you to import C code into a Code Property Graph, and then compute …☆17May 22, 2024Updated last year
- ☆14Jun 21, 2020Updated 5 years ago
- User defined static call-tree constraints in C++. This is the implementation of the tool for my masters thesis.☆14Sep 25, 2018Updated 7 years ago
- An import table scanner for PE file☆16May 7, 2016Updated 9 years ago
- PyCes (Python Code Scanner) - Enhanced Security Static Analysis Tool for Python☆11Apr 18, 2019Updated 6 years ago
- A report formatter for Bandit (a Python security analyzer) that produces output in the SARIF format.☆20Sep 19, 2023Updated 2 years ago
- CVE Vulnerability scanner of your software bill of materials (SBOM). ASCII text input.☆17Oct 26, 2020Updated 5 years ago
- [Deprecated] GitHub's Field Team's CodeQL Custom Queries, Suites, and Configurations. See GitHubSecurityLab/CodeQL-Community-Packs instea…☆85May 1, 2024Updated last year
- This novel black-box web vulnerability scanner attempts to infer the state machine of the web application.☆19Mar 12, 2020Updated 5 years ago
- [AST'26] LLAMAFUZZ: Large Language Model Enhanced Greybox Fuzzing☆23Dec 3, 2024Updated last year
- An implementation of a Model Context Protocol (MCP) for the Nuclei scanner. This tool enables context-aware vulnerability scanning by int…☆38Aug 4, 2025Updated 6 months ago
- aurora-d☆20Apr 24, 2022Updated 3 years ago
- A Simple command line tool that helps checking web applications to identify insecure deserialization vulnerabilities.☆24Jul 10, 2019Updated 6 years ago
- Testability Tarpits: the Impact of Code Patterns on the Security Testing of Web Applications (NDSS 2022)☆27Feb 14, 2024Updated 2 years ago
- Supplemental open-source components for use in developing device drivers for Windows.☆72Feb 18, 2026Updated last week
- An example repository that demonstrates how the build custom CodeQL bundles that include query customizations through the `Customizations…☆25Jun 27, 2022Updated 3 years ago
- Modular framework for file information extraction and dependency analysis to generate accurate SBOMs☆39Updated this week
- GitHub Action for filtering Code Scanning alerts by path and id☆37Oct 16, 2024Updated last year
- ☆10Jul 10, 2021Updated 4 years ago
- OSINT tool for domain discovery☆10Apr 5, 2024Updated last year
- TEAM Mentor 3.x Released Code☆16Aug 5, 2016Updated 9 years ago
- ☆14Mar 12, 2023Updated 2 years ago
- GitHub Advance Security Compliance Action☆134Dec 14, 2022Updated 3 years ago
- AutoVAS is an automated vulnerability analysis system with a deep learning approach.☆35Sep 2, 2021Updated 4 years ago
- A static-analysis tool to detect C/C++ vulnerabilities based on graph comparison☆29Feb 26, 2021Updated 5 years ago
- A fuzzy parser for C/C++ that creates semantic code property graphs☆37Oct 15, 2020Updated 5 years ago
- The source code of project "LLift" (Enhancing static analysis with LLM)☆85Mar 5, 2024Updated last year
- CrewAI-Agentic-Jira: Enhance your Jira workflows with intelligent agent-driven automation. Powered by the CrewAI framework, this project …☆21Feb 3, 2025Updated last year
- A comprehensive repository for malware analysis and threat intelligence, including Cobalt Strike Beacon configurations, YARA rules, IOCs,…☆15Updated this week
- Python infrastructure to train paths selectors for symbolic execution engines.☆13Updated this week
- This repository contains source code and a high-quality test dataset for "Automated Commit Message Generation with Large Language Models.…☆10Nov 6, 2025Updated 3 months ago
- Red-Team - AI Agent to Phish Employees based on Social Intelligence.☆22Dec 28, 2025Updated 2 months ago
- ☆33Oct 15, 2018Updated 7 years ago
- ☆41May 7, 2024Updated last year
- A replication of the Baldur's Gate 3 Script Extender for MacOS☆24Feb 12, 2026Updated 2 weeks ago