advanced-security / codeql-queries
[Deprecated] GitHub's Field Team's CodeQL Custom Queries, Suites, and Configurations. See GitHubSecurityLab/CodeQL-Community-Packs instead
☆80Updated 6 months ago
Related projects ⓘ
Alternatives and complementary repositories for codeql-queries
- An example repository that demonstrates how the build custom CodeQL bundles that include query customizations through the `Customizations…☆25Updated 2 years ago
- Action to retrofit a CodeQL bundle with additional queries, libraries, and customizations☆21Updated 6 months ago
- Collection of community-driven CodeQL query, library and extension packs☆68Updated this week
- GH CLI CodeQL Scan Extension☆18Updated 3 weeks ago
- Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.☆109Updated 11 months ago
- CodeQL Security Queries☆21Updated this week
- Custom / Experimental CodeQL queries☆37Updated 2 years ago
- My CodeQL queries collection☆94Updated last year
- Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)☆49Updated 6 months ago
- A curated list of awesome CodeQL resources.☆20Updated last week
- ☆69Updated 2 years ago
- CodeQL workshops for GitHub Universe☆91Updated last year
- Original workshops and staging area for new ones☆12Updated 3 weeks ago
- Personal CodeQL queries☆58Updated this week
- CodeQL database manager☆46Updated 9 months ago
- CodeQL zero to hero blog post series challenges☆85Updated 3 months ago
- A proof-of-concept tool for detection and exploitation Object Injection Vulnerabilities in .NET applications☆62Updated 3 years ago
- GitHub Advanced Security Python Toolkit☆13Updated this week
- GitHub Satellite 2020 workshops on finding security vulnerabilities with CodeQL for Java/JavaScript.☆207Updated last month
- Testability Pattern Catalogs for SAST☆29Updated 7 months ago
- Python bindings for CodeQL CLI☆49Updated 3 years ago
- ☆57Updated last year
- The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…☆141Updated 7 months ago
- GreHack 2021 CodeQL for Java workshop☆75Updated 2 years ago
- A variant analysis and visualisation tool that scans codebases for similar vulnerabilities☆69Updated 2 years ago
- Intentionally vulnerable Go web app.☆42Updated 10 months ago
- Example of passing file descriptors into a container to perform a privilege escalation on the host☆23Updated 4 years ago
- ☆78Updated 3 years ago
- My solution for GitHub Security Lab CTF 4: CodeQL and Chill - The Java Edition☆19Updated 4 years ago
- Proof of Concepts for unsafe deserialization in Ruby☆11Updated 3 weeks ago