github / codeqlLinks
CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security
☆8,353Updated this week
Alternatives and similar repositories for codeql
Users that are interested in codeql are comparing it to the libraries listed below
Sorting:
- Binaries for the CodeQL CLI☆823Updated 3 weeks ago
- Resources related to GitHub Security Lab☆1,482Updated last week
- Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.☆1,884Updated this week
- The CodeQL extractor and libraries for Go.☆463Updated 2 years ago
- OSS-Fuzz - continuous fuzzing for open source software.☆11,065Updated this week
- A self-hosted Fuzzing-As-A-Service platform☆2,835Updated last year
- Actions for running CodeQL analysis☆1,270Updated this week
- Starter workspace to use with the CodeQL extension for Visual Studio Code.☆523Updated 3 weeks ago
- Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.☆11,728Updated this week
- 《深入理解CodeQL》Finding vulnerabilities with CodeQL.☆1,630Updated last year
- Pilot program for CVE submission through GitHub. CVE Record Submission via Pilot PRs ending 6/30/2023☆1,475Updated this week
- BinAbsInspector: Vulnerability Scanner for Binaries☆1,617Updated 11 months ago
- GitHub’s official command line tool☆39,286Updated this week
- This project hosts security advisories and their accompanying proof-of-concepts related to research conducted at Google which impact non-…☆4,015Updated this week
- Open-source code analysis platform for C/C++/Java/Binary/Javascript/Python/Kotlin based on code property graphs. Discord https://discord.…☆2,407Updated last week
- ☆2,508Updated 2 years ago
- Community curated list of templates for the nuclei engine to find security vulnerabilities.☆10,209Updated this week
- Snyk CLI scans and monitors your projects for security vulnerabilities.☆5,143Updated this week
- weggli is a fast and robust semantic search tool for C and C++ codebases. It is designed to help security researchers identify interestin…☆2,401Updated 10 months ago
- Scalable fuzzing infrastructure.☆5,405Updated this week
- Open source vulnerability DB and triage service.☆1,881Updated this week
- A toolkit for testing, tweaking and cracking JSON Web Tokens☆5,891Updated last month
- Semgrep Community Edition rules, maintained by Semgrep and the community. Free to use under the Semgrep Rules License.☆916Updated this week
- An HTTP toolkit for security research.☆6,950Updated 3 months ago
- 📦 Make security testing of K8s, Docker, and Containerd easier.☆4,219Updated 2 months ago
- Advanced Fuzzing Library - Slot your Fuzzer together in Rust! Scales across cores and machines. For Windows, Android, MacOS, Linux, no_st…☆2,252Updated this week
- ⚙️ A curated list of static analysis (SAST) tools and linters for all programming languages, config files, build tools, and more. The foc…☆13,843Updated 3 weeks ago
- Find, verify, and analyze leaked credentials☆19,353Updated this week
- OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependen…☆6,950Updated this week
- Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock☆6,907Updated last year