fullwaywang / QlRules
Auto-generated CodeQL rules for matching CVE vulnerabilities and variants.
☆152Updated 2 months ago
Related projects ⓘ
Alternatives and complementary repositories for QlRules
- S&P2023 Paper☆39Updated 2 years ago
- 静态分析笔记 Static-Analysis-Notes 程序分析笔记 资源分享☆171Updated last year
- Detecting Flow of Sensitive Data in Mini-Programs with Static Taint Analysis☆73Updated 8 months ago
- ☆22Updated 9 months ago
- writeups for XNUCA2020Qualifier☆70Updated 3 years ago
- 《深入理解Semgrep》Finding vulnerabilities with Semgrep.☆40Updated last year
- Taint analysis implementation based on Heros and Soot☆41Updated 6 months ago
- 静态分析�及代码审计自动化相关资料收集☆284Updated 2 years ago
- Container (Docker) escape exploits☆50Updated 2 years ago
- 更好的包装pwntools,提高编写pwn题exp效率的工具☆26Updated 3 years ago
- A benchmark to evaluate taint analysis☆30Updated 2 years ago
- Low-level RASP: Protecting Applications Implemented in High-level Programming Languages☆56Updated last year
- A set of Code-ql/Joern queries to find vulnerabilities☆56Updated 3 years ago
- A structure-aware grey box fuzzer based on modeling the input processing logic.☆159Updated last month
- 2021西湖论剑IoT、虚实结合赛后开放资源☆64Updated 2 years ago
- ☆21Updated 2 years ago
- ☆63Updated 2 years ago
- ☆58Updated last year
- 智能家居安全相关参考。The related reference of smart home security including: paper, website, topic of Mi IoT.☆73Updated 2 years ago
- attachments and (some) writeups/source code for RWCTF 6th☆108Updated 9 months ago
- A declarative static analysis tool for jvm bytecode based Datalog like CodeQL☆327Updated 10 months ago
- Corax for Java: A general static analysis framework for java code checking.☆233Updated last month
- CodeQL extractor for java, which don't need to compile java source☆323Updated last year
- IoT固件漏洞挖掘工具☆227Updated 2 years ago
- CVE-2022-0185 POC and Docker and Analysis write up☆37Updated 2 years ago
- 安全大佬 Top 100☆66Updated 2 years ago
- 一些阅读源码和Fuzzing 的经验,涵盖黑盒与白盒测试..☆63Updated 3 years ago
- ☆79Updated 4 years ago
- Artifact for ICSE 2023☆46Updated 2 years ago