advanced-security / codeql-workshops-staging

Related projects ⓘ

Alternatives and complementary repositories for codeql-workshops-staging

• advanced-security / codeql-queries
  [Deprecated] GitHub's Field Team's CodeQL Custom Queries, Suites, and Configurations. See GitHubSecurityLab/CodeQL-Community-Packs instea…
  ☆80Updated 6 months ago
• advanced-security / codeql-bundle-action
  Action to retrofit a CodeQL bundle with additional queries, libraries, and customizations
  ☆21Updated 6 months ago
• advanced-security / gh-codeql-scan
  GH CLI CodeQL Scan Extension
  ☆18Updated last month
• advanced-security / advanced-security-material
  ☆67Updated last month
• advanced-security / secret-scanning-review-action
  Action to detect if a secret is initially detected in a pull request
  ☆12Updated last week
• advanced-security / custom-codeql-bundle
  An example repository that demonstrates how the build custom CodeQL bundles that include query customizations through the `Customizations…
  ☆25Updated 2 years ago
• GeekMasher / ghastoolkit
  GitHub Advanced Security Python Toolkit
  ☆13Updated this week
• GitHubSecurityLab / CodeQL-Community-Packs
  Collection of community-driven CodeQL query, library and extension packs
  ☆74Updated last week
• advanced-security / awesome-codeql
  A curated list of awesome CodeQL resources.
  ☆22Updated 3 weeks ago
• GitHubSecurityLab / ruby-unsafe-deserialization
  Proof of Concepts for unsafe deserialization in Ruby
  ☆14Updated last month
• david-wiggs / codeql-anywhere
  Put the power of CodeQL in your pocket, take it with you to any CI 🚀
  ☆11Updated last year
• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆141Updated 8 months ago
• gand3lf / semgrepper
  An extension to use Semgrep inside Burp Suite.
  ☆88Updated last year
• iosifache / semgrep-rules-manager
  Manager of third-party sources of Semgrep rules 🗂
  ☆76Updated 4 months ago
• advanced-security / codeql-extractor-iac
  CodeQL Extractor, Library, and Queries for Infrastructure as Code
  ☆40Updated this week
• advanced-security / secret-scanning-custom-patterns
  Examples of Custom Secret Scanning Patterns
  ☆144Updated 4 months ago
• elttam / semgrep-rules
  ☆175Updated 2 weeks ago
• tuannq2299 / semgrep-rules
  A collection of Semgrep rules which followed security guidelines for .NET and Java.
  ☆16Updated 3 years ago
• GitHubSecurityLab / gh-mrva
  Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)
  ☆49Updated 7 months ago
• microsoft / codeql-container
  Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.
  ☆109Updated 11 months ago
• GeekMasher / security-codeql
  CodeQL Security Queries
  ☆21Updated last week
• shhnjk / cursed_types
  List of Trusted Types bypasses
  ☆86Updated 7 months ago
• AdnaneKhan / ActionsCacheBlasting
  Proof-of-concept code for research into GitHub Actions Cache poisoning.
  ☆22Updated 3 months ago
• GitHubSecurityLab / codeql-zero-to-hero
  CodeQL zero to hero blog post series challenges
  ☆86Updated 3 months ago
• testable-eu / sast-testability-patterns
  Testability Pattern Catalogs for SAST
  ☆29Updated 8 months ago
• SoheilKhodayari / TheThing
  TheThing: an open-source tool to detect DOM Clobbering vulnerabilities
  ☆40Updated last year
• doyensec / PESD-Exporter-Extension
  PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams
  ☆98Updated 9 months ago
• githubsatelliteworkshops / codeql
  GitHub Satellite 2020 workshops on finding security vulnerabilities with CodeQL for Java/JavaScript.
  ☆208Updated last month
• rvermeulen / codeql-workshop-cve-2021-21380
  A CodeQL workshop covering CVE-2021-21380
  ☆12Updated 6 months ago
• securingdev / custom-codeql-queries
  Custom / Experimental CodeQL queries
  ☆37Updated 2 years ago