A set of Code-ql/Joern queries to find vulnerabilities
☆67May 22, 2021Updated 4 years ago
Alternatives and similar repositories for StaticAnalysisQueries
Users that are interested in StaticAnalysisQueries are comparing it to the libraries listed below
Sorting:
- Auto-generated CodeQL rules for matching CVE vulnerabilities and variants.☆183Sep 19, 2024Updated last year
- ☆13Nov 9, 2022Updated 3 years ago
- A bunch of sample codes related to kernel fuzzing☆12Feb 7, 2019Updated 7 years ago
- A collection of POP exploits.☆30Feb 22, 2021Updated 5 years ago
- binary ninja related code☆37Mar 27, 2025Updated 11 months ago
- A binary-only coverage-guided fuzzer based on AFL and e9patch☆22Oct 13, 2020Updated 5 years ago
- My CodeQL queries collection☆99Aug 28, 2023Updated 2 years ago
- Jess is short for Joern extended by Semantic Slicing. This tool allows you to import C code into a Code Property Graph, and then compute …☆17May 22, 2024Updated last year
- Usenix Security 2021 - AURORA: Statistical Crash Analysis for Automated Root Cause Explanation☆161Aug 31, 2022Updated 3 years ago
- Qemu Fuzzer.针对Qemu模拟设备的模糊测试工具,主要思路是Host生成种子Data,然后传递给Guest中转程序,由中转程序访问MMIO,以达到和模拟设备的交互,不同于qtest自带的fuzzer.☆46Dec 12, 2021Updated 4 years ago
- ☆23Nov 2, 2021Updated 4 years ago
- Woodpecker: Verifying systems rules using rule-directed symbolic execution☆12Jul 5, 2016Updated 9 years ago
- Binary rewriting approach with fork server support to fuzz Java applications with afl-fuzz.☆91May 3, 2018Updated 7 years ago
- 使用kprobe获取sys_execve参数☆12Nov 22, 2018Updated 7 years ago
- ☆13Mar 22, 2024Updated 2 years ago
- A tool that automatically creates fuzzing harnesses based on a library☆288Nov 13, 2021Updated 4 years ago
- BSOD: Binary-only Scalable fuzzing Of device Drivers☆165Nov 11, 2021Updated 4 years ago
- Sys, but no longer in Haskell☆19Mar 14, 2022Updated 4 years ago
- Personal CodeQL queries☆65Dec 15, 2025Updated 3 months ago
- ☆73Jun 26, 2024Updated last year
- 学习angr用,里面可能啥都有☆10May 8, 2019Updated 6 years ago
- A declarative static analysis tool for jvm bytecode based Datalog like CodeQL☆345Jan 6, 2024Updated 2 years ago
- lxfuzz is a grey-box kernel fuzzer used for linux. it is scalable because of qemu being used to emulate in a way to be able to freely cho…☆22Jul 21, 2024Updated last year
- Source code of a few LLVM passes that I wrote to learn and that now I am sharing for my LLVM course for security engineering☆28Sep 16, 2022Updated 3 years ago
- ☆138Aug 3, 2021Updated 4 years ago
- ☆19Apr 7, 2023Updated 2 years ago
- Code for UI, backend, engine and statistical analysis for RE☆23Aug 7, 2021Updated 4 years ago
- Codeql学习笔记☆899Apr 25, 2022Updated 3 years ago
- Environment with vulnerable kernel for exploitation of the TEE driver (CVE-2021-44733)☆76Dec 28, 2021Updated 4 years ago
- Finding Java gadget chains with CodeQL☆185Jan 14, 2025Updated last year
- Prototype of the paper "APICraft: Fuzz Driver Generation for Closed-source SDK Libraries".☆66Dec 14, 2021Updated 4 years ago
- Repository of the findings found by wtf when fuzzing IDA75.☆85Aug 2, 2021Updated 4 years ago
- GreHack 2021 CodeQL for Java workshop☆73Nov 19, 2021Updated 4 years ago
- MALOnt - an ontology for Malware Threat Intelligence.☆13Jul 8, 2021Updated 4 years ago
- Ready to use docker image for CodeQL☆90Jan 10, 2024Updated 2 years ago
- ☆103Sep 12, 2021Updated 4 years ago
- Custom / Experimental CodeQL queries☆36Apr 21, 2022Updated 3 years ago
- Sys: A Static/Symbolic Tool for Finding Good Bugs in Good (Browser) Code☆236Mar 14, 2022Updated 4 years ago
- Full-VM taint analysis with Xen, Intel(R) Processor Trace and Triton.☆43Jun 12, 2023Updated 2 years ago