My CodeQL queries collection
☆98Aug 28, 2023Updated 2 years ago
Alternatives and similar repositories for codeql-queries
Users that are interested in codeql-queries are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆276Oct 28, 2021Updated 4 years ago
- Custom / Experimental CodeQL queries☆37Apr 21, 2022Updated 4 years ago
- Personal CodeQL queries☆66Apr 6, 2026Updated 2 months ago
- 个人使用CodeQL编写的一些规则☆181Mar 30, 2022Updated 4 years ago
- notes☆27Oct 10, 2022Updated 3 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- 一个Java攻击框架☆22Nov 27, 2020Updated 5 years ago
- GreHack 2021 CodeQL for Java workshop☆73Nov 19, 2021Updated 4 years ago
- 一个利用ASM对字节码进行污点传播分析的静态代码审计应用(添加了大量代码注释,适合大家进行源码学习)。也加入了挖掘Fastjson反序列化gadget chains和SQLInject(JdbcTemplate、MyBatis、JPA、Hibernate、原生jdbc等)静…☆456Mar 24, 2022Updated 4 years ago
- Codeql学习笔记☆905Apr 25, 2022Updated 4 years ago
- CodeQL Java 全网最全的中文学习资料☆802Mar 18, 2022Updated 4 years ago
- attackRmi☆259Oct 14, 2020Updated 5 years ago
- 自动反编译闭源应用,创建codeql数据库☆320Mar 2, 2022Updated 4 years ago
- fastjson 1.2.68 版本 autotype bypass☆142Jun 17, 2022Updated 4 years ago
- CodeQL extractor for java, which don't need to compile java source☆346Nov 25, 2022Updated 3 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- ☆231Jan 3, 2022Updated 4 years ago
- Apache/Alibaba Dubbo <= 2.7.3 PoC Code for CVE-2021-25641 RCE via Deserialization of Untrusted Data; Affects Versions <= 2.7.6 With Diffe…☆53Jun 6, 2021Updated 5 years ago
- Ready to use docker image for CodeQL☆90Jan 10, 2024Updated 2 years ago
- spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧☆757Apr 14, 2021Updated 5 years ago
- Conote 综合安全测试平台社区版。☆374Aug 15, 2024Updated last year
- GitHub Satellite 2020 workshops on finding security vulnerabilities with CodeQL for Java/JavaScript.☆211Sep 27, 2024Updated last year
- ZKar is a Java serialization protocol analysis tool implement in Go.☆653Apr 19, 2026Updated 2 months ago
- 编译原理学习代码仓库☆23Jan 17, 2022Updated 4 years ago
- java内存对象搜索辅助工具☆820Sep 23, 2022Updated 3 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- tomcat使用了自带session同步功能时,不安全的配置(没有使用EncryptInterceptor)导致存在的反序列化漏洞,通过精心构造的数据包, 可以对使用了tomcat自带session同步功能的服务器进行攻击。PS:这个不是CVE-2020-9484,9484…☆213May 19, 2020Updated 6 years ago
- JDBC Connection URL Attack��☆451Sep 10, 2021Updated 4 years ago
- Flask 内存马☆314Mar 26, 2021Updated 5 years ago
- ☆526Sep 16, 2022Updated 3 years ago
- 利用链、漏洞检测工具☆376Jul 31, 2024Updated last year
- Java web路由内存分析工具☆438May 22, 2025Updated last year
- A exploit tool for Grafana Unauthorized arbitrary file reading vulnerability (CVE-2021-43798), it can burst plugins / extract secret_key …☆268Oct 17, 2025Updated 8 months ago
- A byte code analyzer for finding deserialization gadget chains in Java applications☆1,087Jun 15, 2021Updated 5 years ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆358Sep 20, 2022Updated 3 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- 一个针对防御 log4j2 CVE-2021-44228 漏洞的 RASP 工具。 A Runtime Application Self-Protection module specifically designed for log4j2 RCE (CVE-2021-442…☆125Dec 11, 2021Updated 4 years ago
- ☆145Jan 21, 2021Updated 5 years ago
- Finding Java/C# gadget chains with CodeQL☆188Jun 22, 2026Updated last week
- ☆22Nov 3, 2022Updated 3 years ago
- codemillx is a tool for CodeQL, extract the comments in the code and generate codeql module. 强化Go开源项目安全检测(内含开源项目漏洞挖掘方法)☆205Mar 19, 2022Updated 4 years ago
- Unofficial Dockerfile and scripts for building CodeQL databases for the OpenJDK☆49Jan 7, 2024Updated 2 years ago
- 主流供应商的一些攻击性漏洞汇总☆804Nov 8, 2021Updated 4 years ago