github / codeqlLinks
CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security
☆9,191Updated last week
Alternatives and similar repositories for codeql
Users that are interested in codeql are comparing it to the libraries listed below
Sorting:
- Binaries for the CodeQL CLI☆935Updated last week
- Actions for running CodeQL analysis☆1,471Updated this week
- Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.☆2,134Updated this week
- OSS-Fuzz - continuous fuzzing for open source software.☆11,862Updated this week
- Resources related to GitHub Security Lab☆1,578Updated 2 months ago
- Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.☆14,010Updated last week
- Scalable fuzzing infrastructure.☆5,519Updated this week
- An extension for Visual Studio Code that adds rich language support for CodeQL☆503Updated last week
- Open source vulnerability DB and triage service.☆2,468Updated last week
- Tutorials, examples, discussions, research proposals, and other resources related to fuzzing☆3,748Updated last year
- This project hosts security advisories and their accompanying proof-of-concepts related to research conducted at Google which impact non-…☆4,346Updated this week
- Starter workspace to use with the CodeQL extension for Visual Studio Code.☆569Updated this week
- Snyk CLI scans and monitors your projects for security vulnerabilities.☆5,407Updated this week
- Vulnerability scanner written in Go which uses the data provided by https://osv.dev☆8,416Updated this week
- A vulnerability scanner for container images and filesystems☆11,469Updated this week
- Open-source code analysis platform for C/C++/Java/Binary/Javascript/Python/Kotlin based on code property graphs. Discord https://discord.…☆2,915Updated this week
- The CodeQL extractor and libraries for Go.☆465Updated 3 years ago
- CLI tool and library for generating a Software Bill of Materials from container images and filesystems☆8,331Updated this week
- An enterprise friendly way of detecting and preventing secrets in code.☆4,412Updated 10 months ago
- Pilot program for CVE submission through GitHub. CVE Record Submission via Pilot PRs ending 6/30/2023☆1,492Updated 8 months ago
- The fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power…☆6,282Updated this week
- ⚙️ A curated list of static analysis (SAST) tools and linters for all programming languages, config files, build tools, and more. The foc…☆14,367Updated 2 weeks ago
- 《深入理解CodeQL》Finding vulnerabilities with CodeQL.☆1,751Updated 2 years ago
- OpenSSF Scorecard - Security health metrics for Open Source☆5,255Updated last week
- 🤖 Dependabot's core logic for creating update PRs.☆5,375Updated this week
- Security oriented software fuzzer. Supports evolutionary, feedback-driven fuzzing based on code coverage (SW and HW based)☆3,304Updated last month
- syzkaller is an unsupervised coverage-guided kernel fuzzer☆6,033Updated this week
- RESTler is the first stateful REST API fuzzing tool for automatically testing cloud services through their REST APIs and finding security…☆2,867Updated 3 weeks ago
- 🤖 A framework for building GitHub Apps to automate and improve your workflow☆9,438Updated this week
- weggli is a fast and robust semantic search tool for C and C++ codebases. It is designed to help security researchers identify interestin…☆2,474Updated last year