a dataflow analysis framework implemented in Go, like soot
☆39Sep 22, 2022Updated 3 years ago
Alternatives and similar repositories for goot
Users that are interested in goot are comparing it to the libraries listed below
Sorting:
- Go-sec-code is a project for learning Go vulnerability code.☆50Mar 11, 2023Updated 2 years ago
- 收录go语��言编写的项目、框架和组件出现的cve,或者一些相关的利用方式的文章☆47Nov 23, 2022Updated 3 years ago
- ☆18Dec 25, 2024Updated last year
- Static JavaScript Analysis: AST, Control Flow, Data Flow, & Pointer Analysis☆28Feb 26, 2022Updated 4 years ago
- Tai-e的Web插件☆23Jun 11, 2024Updated last year
- pyyso is a Python package that generate java serialized poc. Including CommonsCollections1-7, JDK7u21, JDK8u20, ldap for jndi, shiro-550,…☆55Nov 5, 2022Updated 3 years ago
- generate facts from bytecode (source is https://github.com/plast-lab/doop-mirror/tree/master/generators)☆23Nov 24, 2024Updated last year
- CodeQL model generation for Go.☆17Jun 11, 2021Updated 4 years ago
- 项目监控工具 以及 Codeql 自动运行☆313Apr 13, 2023Updated 2 years ago
- YangMiee攻击面梳理平台☆20Apr 25, 2025Updated 10 months ago
- ☆30Aug 30, 2022Updated 3 years ago
- CodeQL extractor for java, which don't need to compile java source☆348Nov 25, 2022Updated 3 years ago
- A declarative static analysis tool for jvm bytecode based Datalog like CodeQL☆345Jan 6, 2024Updated 2 years ago
- Plume is a code representation benchmarking library with options to extract the AST from Java bytecode and store the result in various gr…☆77Oct 14, 2024Updated last year
- ☆10May 17, 2023Updated 2 years ago
- nativeRasp that can hook native methods☆24Apr 24, 2023Updated 2 years ago
- Java After-Deserialization Attack☆79Apr 26, 2021Updated 4 years ago
- A benchmark to evaluate taint analysis☆28Jun 20, 2022Updated 3 years ago
- codemillx is a tool for CodeQL, extract the comments in the code and generate codeql module. 强化Go开源项目安全检测(内含开源项目漏洞挖掘方法)☆205Mar 19, 2022Updated 3 years ago
- 这是一系列关于如何从零构建起一个语言虚拟机(VM)的文章的, 翻译自: https://blog.subnetzero.io/post/building-language-vm-part-00/☆14Oct 11, 2024Updated last year
- A c0 -> LLVM IR compiler, with some optimization.☆13Jul 13, 2020Updated 5 years ago
- 一个可扩展的智能合约安全审计工具☆13Oct 13, 2020Updated 5 years ago
- Some ReadObject Sink With JDBC☆243May 8, 2024Updated last year
- Fastjson姿势技巧集合☆13Sep 18, 2022Updated 3 years ago
- Using Windows Hook to make a CLI WebShellKill☆45Feb 4, 2019Updated 7 years ago
- ☆17Jun 14, 2024Updated last year
- WALA 学习笔记☆14Aug 8, 2023Updated 2 years ago
- ☆146Jan 16, 2023Updated 3 years ago
- Corax for Java: A general static analysis framework for java code checking.☆254Dec 3, 2024Updated last year
- Exchange ProxyRelay POC☆38Oct 20, 2022Updated 3 years ago
- ☆35Sep 2, 2024Updated last year
- 一款使用Yaml定义搜索规则来搜索Class的工具☆108Aug 2, 2023Updated 2 years ago
- neo4j plugin of ByteCodeDL for the IntelliJ Platform. ByteCodeDL-Neo4j-IDEA-Plugin☆16Dec 28, 2023Updated 2 years ago
- ☆18Nov 26, 2025Updated 3 months ago
- ☆17Sep 23, 2024Updated last year
- web模糊测试 - 将漏洞可能性放大☆145Apr 23, 2019Updated 6 years ago
- PHP Static Program Analysis☆42Mar 29, 2023Updated 2 years ago
- Taint analysis implementation based on Heros and Soot☆45May 6, 2024Updated last year
- 之前方便自己研究RASP原理和绕过时顺手写的,用于快速启动和重置RASP环境☆71Oct 13, 2024Updated last year