Open-source code analysis platform for C/C++/Java/Binary/Javascript/Python/Kotlin based on code property graphs. Discord https://discord.gg/vv4MH284Hc
☆3,014Mar 18, 2026Updated this week
Alternatives and similar repositories for joern
Users that are interested in joern are comparing it to the libraries listed below
Sorting:
- Code Property Graph: specification, query language, and utilities☆566Updated this week
- A library to extract Code Property Graphs from C/C++, Java, Go, Python, Ruby and every other language through LLVM-IR.☆423Updated this week
- A robust parser for C/C++ storing abstract syntax trees, control flow graphs and program dependence graphs in a neo4j graph database.☆555May 10, 2019Updated 6 years ago
- An easy-to-learn/use static analysis framework for Java☆1,771Feb 16, 2026Updated last month
- A CAT called tabby ( Code Analysis Tool )☆1,641Jan 17, 2026Updated 2 months ago
- 《深入理解CodeQL》Finding vulnerabilities with CodeQL.☆1,763Nov 21, 2023Updated 2 years ago
- Static Value-Flow Analysis Framework for Source Code☆1,655Mar 16, 2026Updated last week
- BinAbsInspector: Vulnerability Scanner for Binaries☆1,670Jun 17, 2024Updated last year
- Getting started with static program analysis. 静态程序分析入门教程。☆1,766Mar 20, 2024Updated 2 years ago
- cwe_checker finds vulnerable patterns in binary executables☆1,327Apr 10, 2025Updated 11 months ago
- A declarative static analysis tool for jvm bytecode based Datalog like CodeQL☆345Jan 6, 2024Updated 2 years ago
- Effective Vulnerability Identification by Learning Comprehensive Program Semantics via Graph Neural Networks☆256Jan 19, 2024Updated 2 years ago
- ☆350Oct 24, 2024Updated last year
- Code Property Graph (CPG) frontend for binary applications and libraries.☆95Oct 28, 2021Updated 4 years ago
- CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security☆9,357Updated this week
- Framework for Automating Fuzzable Target Discovery with Static Analysis.☆549Feb 1, 2024Updated 2 years ago
- Recent Fuzzing Paper☆2,742Updated this week
- A LLVM-based static analysis framework.☆1,038Mar 14, 2026Updated last week
- ShiftLeft OverflowDB☆135May 22, 2025Updated 10 months ago
- weggli is a fast and robust semantic search tool for C and C++ codebases. It is designed to help security researchers identify interestin…☆2,482Jul 12, 2024Updated last year
- The fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power…☆6,389Updated this week
- Binary, coverage-guided fuzzer for Windows, macOS, Linux and Android☆1,299Mar 2, 2026Updated 2 weeks ago
- A new version of Soot with a completely overhauled architecture☆775Updated this week
- Advanced Fuzzing Library - Slot your Fuzzer together in Rust! Scales across cores and machines. For Windows, Android, MacOS, Linux, no_st…☆2,511Mar 11, 2026Updated last week
- Coverage-guided, in-process fuzzing for the JVM☆1,210Updated this week
- Soot - A Java optimization framework☆3,075Mar 3, 2026Updated 2 weeks ago
- Python library for CPGQL server☆41Jun 4, 2024Updated last year
- SymCC: efficient compiler-based symbolic execution☆862Mar 16, 2026Updated last week
- 一些阅读源码和Fuzzing 的经验,涵盖黑盒与白盒测试..☆1,076Aug 24, 2021Updated 4 years ago
- A powerful static binary rewriting tool☆1,097Mar 3, 2026Updated 2 weeks ago
- xAST评价体系,让安全工具不再“黑盒”. The xAST evaluation benchmark makes security tools no longer a "black box".☆467Jan 15, 2026Updated 2 months ago
- Plume is a code representation benchmarking library with options to extract the AST from Java bytecode and store the result in various gr…☆78Oct 14, 2024Updated last year
- A True Instrumentable Binary Emulation Framework☆5,850Nov 5, 2025Updated 4 months ago
- VulDeePecker: A Deep Learning-Based System for Vulnerability Detection☆347Nov 17, 2020Updated 5 years ago
- A C/C++ Code Vulnerability Dataset with Code Changes and CVE Summaries☆357Mar 25, 2021Updated 4 years ago
- A powerful and user-friendly binary analysis platform!☆8,556Updated this week
- A JavaScript Engine Fuzzer☆2,167Updated this week
- RetroWrite -- Retrofitting compiler passes through binary rewriting☆739Apr 26, 2025Updated 10 months ago
- Binary code static analyser, with IDA integration. Performs value and taint analysis, type reconstruction, use-after-free and double-free…☆1,853Feb 25, 2025Updated last year