Alternatives and similar repositories for codeql

Users that are interested in codeql are comparing it to the libraries listed below

• mbechler / serianalyzer
  A static byte code analyzer for Java deserialization gadget research
  ☆252Updated 8 years ago
• veracode-research / spring-view-manipulation
  When MVC magic turns black
  ☆296Updated 5 years ago
• cldrn / codeql-queries
  My CodeQL queries collection
  ☆99Updated 2 years ago
• Marcono1234 / codeql-java-queries
  Personal CodeQL queries
  ☆63Updated last month
• advanced-security / codeql-queries
  [Deprecated] GitHub's Field Team's CodeQL Custom Queries, Suites, and Configurations. See GitHubSecurityLab/CodeQL-Community-Packs instea…
  ☆85Updated last year
• pwntester / codeql_grehack_workshop
  GreHack 2021 CodeQL for Java workshop
  ☆75Updated 4 years ago
• advanced-security / custom-codeql-bundle
  An example repository that demonstrates how the build custom CodeQL bundles that include query customizations through the `Customizations…
  ☆25Updated 3 years ago
• ZeddYu / HTTP-Smuggling-Lab
  Use HTTP Smuggling Lab to learn HTTP Smuggling.
  ☆345Updated 3 years ago
• bahruzjabiyev / t-reqs
  Grammar-based HTTP/1 fuzzer with mutation ability
  ☆260Updated last year
• voidfyoo / rwctf-2021-old-system
  ☆78Updated 5 years ago
• WSP-LAB / FUSE
  A penetration testing tool for finding file upload bugs (NDSS 2020)
  ☆252Updated 4 years ago
• Contrast-Security-OSS / go-test-bench
  Intentionally vulnerable Go web app.
  ☆42Updated 3 months ago
• zbazztian / codeql-debug
  ☆72Updated 3 years ago
• mogwailabs / rmi-deserialization
  Slides/Demos from the BSides Munich 2019 talk "Attacking Java RMI in 2019"
  ☆101Updated 6 years ago
• Contrast-Security-OSS / joogle
  A static analysis API for finding deserialization attack gadgets
  ☆38Updated 3 years ago
• j3ssie / codeql-docker
  Ready to use docker image for CodeQL
  ☆90Updated 2 years ago
• synacktiv / QLinspector
  Finding Java gadget chains with CodeQL
  ☆184Updated last year
• GitHubSecurityLab / CodeQL-Community-Packs
  Collection of community-driven CodeQL query, library and extension packs
  ☆203Updated last month
• cvebase / cvebase.com
  cvebase is a community-driven vulnerability data platform to discover the world's top security researchers and their latest disclosed vul…
  ☆142Updated 4 years ago
• whitesquirrell / C0deVari4nt
  A variant analysis and visualisation tool that scans codebases for similar vulnerabilities
  ☆73Updated 3 years ago
• GitHubSecurityLab / gh-qldb
  CodeQL database manager
  ☆48Updated 9 months ago
• GitHubSecurityLab / codeql-zero-to-hero
  CodeQL zero to hero blog post series challenges
  ☆163Updated 4 months ago
• GitHubSecurityLab / gh-mrva
  Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)
  ☆61Updated 9 months ago
• m6a-UdS / ssrf-lab
  Lab for exploring SSRF vulnerabilities
  ☆247Updated 4 years ago
• xiaofen9 / Lynx
  A Node.js vulnerability finding tool.
  ☆96Updated 6 months ago
• wdeilim / Audit-Rules
  A curated list of audit rules which extract from Source Code Auditing tools.
  ☆15Updated 5 years ago
• microsoft / codeql-container
  Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.
  ☆122Updated 2 years ago
• appsecco / json-flash-csrf-poc
  This repo contains the files required to perform a CSRF attack using Flash and HTTP 307 redirections.
  ☆77Updated 8 years ago
• PalindromeLabs / Java-Deserialization-CVEs
  Compiled dataset of Java deserialization CVEs
  ☆60Updated 5 years ago
• atorralba / GHSL_CTF_4
  My solution for GitHub Security Lab CTF 4: CodeQL and Chill - The Java Edition
  ☆19Updated 5 years ago