a dataflow analysis framework implemented in Go, like soot
☆39Sep 22, 2022Updated 3 years ago
Alternatives and similar repositories for goot
Users that are interested in goot are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Go-sec-code is a project for learning Go vulnerability code.☆50Mar 11, 2023Updated 3 years ago
- 收录go语言编写的项目、框架和组件出现的cve,或者一些相关的利用方式的文章☆48Nov 23, 2022Updated 3 years ago
- ☆18Dec 25, 2024Updated last year
- Source code of paper "EPScan: Automated Detection of Excessive RBAC Permissions in Kubernetes Applications"☆16May 14, 2025Updated 11 months ago
- pyyso is a Python package that generate java serialized poc. Including CommonsCollections1-7, JDK7u21, JDK8u20, ldap for jndi, shiro-550,…☆55Nov 5, 2022Updated 3 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Tai-e的Web插件☆23Jun 11, 2024Updated last year
- ☆29Aug 30, 2022Updated 3 years ago
- 项目监控工具 以及 Codeql 自动运行☆314Apr 13, 2023Updated 3 years ago
- ☆147Jan 16, 2023Updated 3 years ago
- Static JavaScript Analysis: AST, Control Flow, Data Flow, & Pointer Analysis☆29Feb 26, 2022Updated 4 years ago
- Some ReadObject Sink With JDBC☆245May 8, 2024Updated last year
- nativeRasp that can hook native methods☆23Apr 24, 2023Updated 3 years ago
- Fastjson姿势技巧集合☆13Sep 18, 2022Updated 3 years ago
- 🚰 Static taint analysis for Go programs.☆81Apr 17, 2026Updated 2 weeks ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- A declarative static analysis tool for jvm bytecode based Datalog like CodeQL☆341Jan 6, 2024Updated 2 years ago
- Plume is a code representation benchmarking library with options to extract the AST from Java bytecode and store the result in various gr…☆79Oct 14, 2024Updated last year
- CodeQL model generation for Go.☆17Jun 11, 2021Updated 4 years ago
- CodeQL extractor for java, which don't need to compile java source☆347Nov 25, 2022Updated 3 years ago
- A c0 -> LLVM IR compiler, with some optimization.☆14Jul 13, 2020Updated 5 years ago
- Source code of a few LLVM passes that I wrote to learn and that now I am sharing for my LLVM course for security engineering☆28Sep 16, 2022Updated 3 years ago
- generate facts from bytecode (source is https://github.com/plast-lab/doop-mirror/tree/master/generators)☆23Nov 24, 2024Updated last year
- 一款使用Yaml定义搜索规则来搜索Class的工具☆109Aug 2, 2023Updated 2 years ago
- codemillx is a tool for CodeQL, extract the comments in the code and generate codeql module. 强化Go开源项目安全检测(内含开源项目漏洞挖掘方法)☆206Mar 19, 2022Updated 4 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- WALA 学习笔记☆14Aug 8, 2023Updated 2 years ago
- Multithreaded exploit script for CVE-2022-36804 affecting BitBucket versions <8.3.1☆18Sep 19, 2022Updated 3 years ago
- 一个IDEA插件:一键收集项目中所有jar包依赖的工具插件。遍历项目目录收集所有jar文件,复制到all-in-one文件夹,并自动添加为项目库。☆50Oct 30, 2025Updated 6 months ago
- Java After-Deserialization Attack☆78Apr 26, 2021Updated 5 years ago
- Using Windows Hook to make a CLI WebShellKill☆45Feb 4, 2019Updated 7 years ago
- The official repo of Doop, the declarative pointer analysis framework.☆209Apr 23, 2026Updated last week
- ☆35Sep 2, 2024Updated last year
- ☆10May 17, 2023Updated 2 years ago
- 之前方便自己研究RASP原理和绕过时顺手写的,用于快速启动和重置RASP环境☆72Oct 13, 2024Updated last year
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- ☆24Jan 7, 2025Updated last year
- Corax for Java: A general static analysis framework for java code checking.☆254Dec 3, 2024Updated last year
- ReDoSHunter: A Combined Static and Dynamic Approach for Regular Expression DoS Detection☆81Dec 14, 2022Updated 3 years ago
- A benchmark to evaluate taint analysis☆29Jun 20, 2022Updated 3 years ago
- 这是一系列关于如何从零构建起一个语言虚拟机(VM)的文章的, 翻译自: https://blog.subnetzero.io/post/building-language-vm-part-00/☆14Oct 11, 2024Updated last year
- Taint analysis implementation based on Heros and Soot☆45May 6, 2024Updated 2 years ago
- 一个可扩展的智能合约安全审计工具☆13Oct 13, 2020Updated 5 years ago