githubsatelliteworkshops / codeql

Related projects: ⓘ

• cldrn / codeql-queries
  My CodeQL queries collection
  ☆93Updated last year
• microsoft / codeql-container
  Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.
  ☆102Updated 9 months ago
• veracode-research / spring-view-manipulation
  When MVC magic turns black
  ☆279Updated 4 years ago
• mbechler / serianalyzer
  A static byte code analyzer for Java deserialization gadget research
  ☆242Updated 7 years ago
• GitHubSecurityLab / CodeQL-Community-Packs
  Collection of community-driven CodeQL query, library and extension packs
  ☆64Updated 3 weeks ago
• zbazztian / codeql-debug
  ☆69Updated 2 years ago
• advanced-security / codeql-queries
  [Deprecated] GitHub's Field Team's CodeQL Custom Queries, Suites, and Configurations. See GitHubSecurityLab/CodeQL-Community-Packs instea…
  ☆80Updated 4 months ago
• github / vscode-codeql-starter
  Starter workspace to use with the CodeQL extension for Visual Studio Code.
  ☆480Updated last week
• ZeddYu / HTTP-Smuggling-Lab
  Use HTTP Smuggling Lab to learn HTTP Smuggling.
  ☆343Updated last year
• PalindromeLabs / Java-Deserialization-CVEs
  Compiled dataset of Java deserialization CVEs
  ☆60Updated 4 years ago
• githubuniverseworkshops / codeql
  CodeQL workshops for GitHub Universe
  ☆91Updated last year
• synacktiv / QLinspector
  Finding Java gadget chains with CodeQL
  ☆158Updated last month
• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆138Updated 6 months ago
• GoSecure / template-injection-workshop
  Workshop on Template Injection (6 exercises) covering Twig, Jinja2, Tornado, Velocity and Freemaker engines.
  ☆119Updated last year
• advanced-security / custom-codeql-bundle
  An example repository that demonstrates how the build custom CodeQL bundles that include query customizations through the `Customizations…
  ☆25Updated 2 years ago
• Marcono1234 / codeql-java-queries
  Personal CodeQL queries
  ☆58Updated this week
• bahruzjabiyev / frameshifter
  Grammar-based HTTP/2 fuzzer with mutation ability
  ☆40Updated 2 years ago
• bahruzjabiyev / t-reqs
  Grammar-based HTTP/1 fuzzer with mutation ability
  ☆240Updated 3 months ago
• frohoff / marshalsec
  ☆70Updated 7 years ago
• Semmle / SecurityQueries
  Deprecated: Please visit https://github.com/github/codeql instead.
  ☆81Updated 2 years ago
• ajinabraham / libsast
  Generic SAST Library
  ☆123Updated 2 months ago
• mogwailabs / rmi-deserialization
  Slides/Demos from the BSides Munich 2019 talk "Attacking Java RMI in 2019"
  ☆99Updated 4 years ago
• BishopFox / GadgetProbe
  Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
  ☆581Updated 3 years ago
• CSPF-Founder / JavaVulnerableLab
  Vulnerable Java based Web Application
  ☆255Updated 3 months ago
• KTH-LangSec / silent-spring
  Silent Spring: Prototype Pollution Leads to Remote Code Execution in Node.js
  ☆52Updated 7 months ago
• NickstaDB / DeserLab
  Java deserialization exploitation lab.
  ☆234Updated 5 years ago
• pwntester / codeql_grehack_workshop
  GreHack 2021 CodeQL for Java workshop
  ☆74Updated 2 years ago
• ozzi- / JWT4B
  JWT Support for Burp
  ☆241Updated last month
• m6a-UdS / ssrf-lab
  Lab for exploring SSRF vulnerabilities
  ☆245Updated 3 years ago
• mogwailabs / mjet
  MOGWAI LABS JMX exploitation toolkit
  ☆196Updated last year