j3ssie / codeql-docker
Ready to use docker image for CodeQL
☆87Updated 9 months ago
Related projects ⓘ
Alternatives and complementary repositories for codeql-docker
- My CodeQL queries collection☆94Updated last year
- Sample Spring application to Demonstrate the Gateway Actuator☆48Updated 2 years ago
- GreHack 2021 CodeQL for Java workshop☆75Updated 2 years ago
- Template Injection in Email Templates leads to code execution on Jira Service Management Server☆48Updated 3 years ago
- PaddingZip is a tool that you can craft a zip file that contains the padding characters between the file content.☆62Updated 2 years ago
- Sample Spring Boot App Demonstrating RCE via Exposed env Actuator and H2 Database☆103Updated 4 years ago
- Finding Java gadget chains with CodeQL☆159Updated 3 months ago
- Custom / Experimental CodeQL queries☆37Updated 2 years ago
- ☆54Updated 3 years ago
- ☆72Updated 2 years ago
- Atlassian Jira Seraph Authentication Bypass RCE(CVE-2022-0540)☆69Updated 2 years ago
- Unofficial Dockerfile and scripts for building CodeQL databases for the OpenJDK☆47Updated 10 months ago
- ☆69Updated 2 years ago
- Library for manually creating Java serialization data.☆28Updated last year
- CVE-2020-36179~82 Jackson-databind SSRF&RCE☆81Updated 3 years ago
- tetctf2020_amf_writeups☆23Updated 3 years ago
- Several XStream gadgets ported from ysoserial☆32Updated 3 years ago
- Intentionally Vulnerable to Spring4Shell☆51Updated 2 years ago
- CVE-2021-42342 RCE☆42Updated 2 years ago
- Apache Solr SSRF(CVE-2021-27905)☆68Updated 3 years ago
- ☆22Updated 2 years ago
- Apache Tomcat + MongoDB Remote Code Execution☆114Updated 3 years ago
- A Proof of concept for CVE-2021-27850 affecting Apache Tapestry and leading to unauthencticated remote code execution.☆5Updated last year
- A project demonstrating an app that is vulnerable to Spring Security authorization bypass CVE-2022-31692☆36Updated 2 years ago
- Oracle Access Manager Unauthenticated Attacker Vulnerability CVE-2021-35587☆40Updated 2 years ago
- https://github.com/GrrrDog/Java-Deserialization-Cheat-Sheet☆49Updated 3 years ago
- Our PoC for the vulnerable products☆44Updated 2 years ago