A containerized Model Context Protocol (MCP) server providing static code analysis using Joern's Code Property Graph (CPG) with support for Java, C/C++, JavaScript, Python, Go, Kotlin, C#, Ghidra, Jimple, PHP, Ruby, and Swift.
☆53Mar 18, 2026Updated this week
Alternatives and similar repositories for codebadger
Users that are interested in codebadger are comparing it to the libraries listed below
Sorting:
- A simple Joern MCP Server.☆37Nov 14, 2025Updated 4 months ago
- IDA Hexrays To CodeQL☆52Nov 7, 2024Updated last year
- Industrial Cybersecurity Conference Index☆13Mar 11, 2024Updated 2 years ago
- Holistic Concolic Execution for Dynamic Web Applications via Symbolic Interpreter Analysis (IEEE S&P 2024)☆15Oct 3, 2024Updated last year
- JavaRce complements project - use RASP to prevent vulnerabilities☆24Apr 22, 2024Updated last year
- IDA Hexrays To Joern☆46Nov 7, 2024Updated last year
- CDS Threat Modeling Tool MVP☆15Updated this week
- ☆10May 6, 2021Updated 4 years ago
- Automatically generates schema given json samples.☆10Jun 1, 2016Updated 9 years ago
- 简单实现的 Java RASP☆35Oct 14, 2020Updated 5 years ago
- Quest Soft Player in java☆11Mar 12, 2024Updated 2 years ago
- MutRex - A generator of fault detecting strings for regular expressions☆12Mar 18, 2024Updated 2 years ago
- Hack The Box OSCP-like VMs writeups☆11Oct 11, 2020Updated 5 years ago
- A curated list of audit rules which extract from Source Code Auditing tools.☆15Feb 19, 2020Updated 6 years ago
- ☆11May 18, 2021Updated 4 years ago
- PHP Static Program Analysis☆42Mar 29, 2023Updated 2 years ago
- 一个中文版本的 LibAFL 笔记,主要内容是 LibAFL 原理相关的内容,同时也附加一些 LibAFL 使用方面的 tips ,方便查阅和参考。☆36Nov 22, 2023Updated 2 years ago
- BurpSuite 插件,自动格式化 response 中的 json/jsonp 数据,同时也会对 Unicode 进行解码☆10Feb 19, 2020Updated 6 years ago
- Useful scripts for tampermonkey that I used during bug hunting. Will be updated "au fil de l'eau"☆17Jun 2, 2025Updated 9 months ago
- Goby-Poc-Collection for Goby scanner https://github.com/gobysec/Goby - forked from many github accounts Thanks the authors☆12Dec 10, 2023Updated 2 years ago
- tool that generates bypasses for open redirects☆51Apr 18, 2022Updated 3 years ago
- The source code of [S&P'25] Detecting Taint-Style Vulnerabilities in Microservice-Structured Web Applications.☆66Nov 20, 2025Updated 4 months ago
- experimental wildcard subdomain filtering prototype☆14Aug 5, 2023Updated 2 years ago
- Joomla 未授权访问漏洞 CVE-2023-23752☆12Mar 3, 2023Updated 3 years ago
- ☆56Feb 18, 2025Updated last year
- Bulk scanning tool for ServiceNow CVE-2024-4879 vulnerability☆10Jul 12, 2024Updated last year
- The source code of [Sec'25] Make Agent Defeat Agent: Automatic Detection of Taint-Style Vulnerabilities in LLM-based Agents☆60Sep 9, 2025Updated 6 months ago
- Binary dynamic, static, and symbolic execution analysis tools for directed test generation☆22Nov 14, 2019Updated 6 years ago
- 软件工程与形式化方法相关前沿工作阅读与分享☆36Oct 27, 2025Updated 4 months ago
- ☆15Feb 15, 2023Updated 3 years ago
- A curated list of awesome resources about LLM supply chain security (including papers, security reports and CVEs)☆96Jan 20, 2025Updated last year
- Writeups of my favorite challenges from Season 1 of BlockHarbor CTF☆10Oct 20, 2023Updated 2 years ago
- cmap - Node/Service discovery using python☆14Feb 11, 2021Updated 5 years ago
- Serverless, real-time, ClamAV+Yara scanning for your S3 Buckets☆33Jan 14, 2026Updated 2 months ago
- Deterministic Regular Expressions with Backreferences☆20Oct 12, 2020Updated 5 years ago
- Collections of xiaomi/mijia MIIO documents/examples/firmwares☆14Jun 30, 2021Updated 4 years ago
- Automated black-box REST API testing using graph-based modeling, LLMs, and multi-agent reinforcement learning.☆45Feb 20, 2026Updated last month
- Fuzzer and generator for string and regex problems in SMT-LIB 2.x format.☆22Dec 17, 2021Updated 4 years ago
- Veracruz branches of https://gitlab.com/arm-research/security/icecap/icecap☆19Jan 22, 2024Updated 2 years ago