advanced-security / custom-codeql-bundle

Related projects ⓘ

Alternatives and complementary repositories for custom-codeql-bundle

• securingdev / custom-codeql-queries
  Custom / Experimental CodeQL queries
  ☆37Updated 2 years ago
• cldrn / codeql-queries
  My CodeQL queries collection
  ☆94Updated last year
• advanced-security / codeql-queries
  [Deprecated] GitHub's Field Team's CodeQL Custom Queries, Suites, and Configurations. See GitHubSecurityLab/CodeQL-Community-Packs instea…
  ☆80Updated 6 months ago
• atorralba / GHSL_CTF_4
  My solution for GitHub Security Lab CTF 4: CodeQL and Chill - The Java Edition
  ☆19Updated 4 years ago
• Marcono1234 / codeql-java-queries
  Personal CodeQL queries
  ☆58Updated last week
• zbazztian / codeql-debug
  ☆70Updated 2 years ago
• GitHubSecurityLab / CodeQL-Community-Packs
  Collection of community-driven CodeQL query, library and extension packs
  ☆74Updated last week
• advanced-security / gh-codeql-scan
  GH CLI CodeQL Scan Extension
  ☆18Updated last month
• gagliardetto / codemill
  CodeQL model generation for Go.
  ☆17Updated 3 years ago
• advanced-security / codeql-bundle-action
  Action to retrofit a CodeQL bundle with additional queries, libraries, and customizations
  ☆21Updated 6 months ago
• GitHubSecurityLab / gh-qldb
  CodeQL database manager
  ☆46Updated 9 months ago
• pwntester / codeql_grehack_workshop
  GreHack 2021 CodeQL for Java workshop
  ☆75Updated 3 years ago
• chudyPB / XStream-Gadgets
  Several XStream gadgets ported from ysoserial
  ☆32Updated 3 years ago
• synacktiv / mojarragadget
  ☆15Updated 3 years ago
• GitHubSecurityLab / gh-mrva
  Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)
  ☆49Updated 7 months ago
• KTH-LangSec / SerialDetector
  A proof-of-concept tool for detection and exploitation Object Injection Vulnerabilities in .NET applications
  ☆62Updated 3 years ago
• iflody / codeql-workshop
  ☆12Updated 3 years ago
• Marcono1234 / codeql-jdk-docker
  Unofficial Dockerfile and scripts for building CodeQL databases for the OpenJDK
  ☆47Updated 10 months ago
• Contrast-Security-OSS / joogle
  A static analysis API for finding deserialization attack gadgets
  ☆38Updated 2 years ago
• voidfyoo / rwctf-2021-old-system
  ☆78Updated 3 years ago
• Marcono1234 / serial-builder
  Library for manually creating Java serialization data.
  ☆28Updated last year
• paul-axe / ctf
  CTF stuff
  ☆40Updated last year
• Metnew / write-ups
  ☆33Updated 2 years ago
• Jarijaas / helsec-1103
  ☆22Updated 2 years ago
• Lucifaer / head_first_javarasp
  一些Java RASP demo
  ☆11Updated 5 years ago
• samsbp / java-file-ftp
  POC for leaking java version through file and ftp protocols
  ☆24Updated 4 years ago
• julianvilas / rooted2k15
  Additional materials for RootedCON 2015 Apache Struts talk
  ☆28Updated 9 years ago
• BytecodeDL / soot-fact-generator
  generate facts from bytecode (source is https://github.com/plast-lab/doop-mirror/tree/master/generators)
  ☆23Updated 10 months ago
• LoRexxar / log_dependency_checklist
  Dependencies with Log4j2 Checklist
  ☆35Updated 2 years ago
• EdoardoVignati / java-deserialization-of-untrusted-data-poc
  Some PoC (Proof-of-Concept) about vulnerability of java deserialization of untrusted data
  ☆26Updated 3 years ago