github / codeqlLinks
CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security
☆8,437Updated this week
Alternatives and similar repositories for codeql
Users that are interested in codeql are comparing it to the libraries listed below
Sorting:
- Binaries for the CodeQL CLI☆830Updated 2 weeks ago
- Actions for running CodeQL analysis☆1,285Updated this week
- Resources related to GitHub Security Lab☆1,492Updated last month
- Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.☆11,904Updated this week
- Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.☆1,902Updated this week
- The CodeQL extractor and libraries for Go.☆463Updated 2 years ago
- An extension for Visual Studio Code that adds rich language support for CodeQL☆458Updated last week
- 《深入理解CodeQL》Finding vulnerabilities with CodeQL.☆1,640Updated last year
- OSS-Fuzz - continuous fuzzing for open source software.☆11,110Updated this week
- Pilot program for CVE submission through GitHub. CVE Record Submission via Pilot PRs ending 6/30/2023☆1,480Updated 3 weeks ago
- OpenSSF Scorecard - Security health metrics for Open Source☆4,940Updated this week
- Open source vulnerability DB and triage service.☆1,902Updated this week
- Tutorials, examples, discussions, research proposals, and other resources related to fuzzing☆3,662Updated 8 months ago
- ⚙️ A curated list of static analysis (SAST) tools and linters for all programming languages, config files, build tools, and more. The foc…☆13,881Updated last month
- Vulnerability scanner written in Go which uses the data provided by https://osv.dev☆7,487Updated this week
- OWASP Benchmark is a test suite designed to verify the speed and accuracy of software vulnerability detection tools. A fully runnable web…☆718Updated last week
- The fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power…☆5,800Updated this week
- Snyk CLI scans and monitors your projects for security vulnerabilities.☆5,157Updated this week
- 📦 Make security testing of K8s, Docker, and Containerd easier.☆4,243Updated 3 months ago
- Common Expression Language -- specification and binary representation☆3,253Updated last month
- ☆2,509Updated 2 years ago
- Pre-Built Vulnerable Environments Based on Docker-Compose☆19,050Updated last month
- FuzzBench - Fuzzer benchmarking as a service.☆1,150Updated 4 months ago
- Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more☆27,215Updated this week
- reNgine is an automated reconnaissance framework for web applications with a focus on highly configurable streamlined recon process via E…☆7,978Updated 4 months ago
- Scalable fuzzing infrastructure.☆5,410Updated this week
- BinAbsInspector: Vulnerability Scanner for Binaries☆1,623Updated last year
- Semgrep Community Edition rules, maintained by Semgrep and the community. Free to use under the Semgrep Rules License.☆929Updated this week
- 📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.☆7,001Updated this week
- Community curated list of templates for the nuclei engine to find security vulnerabilities.☆10,330Updated this week