securingdev / custom-codeql-queries
Custom / Experimental CodeQL queries
☆37Updated 2 years ago
Alternatives and similar repositories for custom-codeql-queries:
Users that are interested in custom-codeql-queries are comparing it to the libraries listed below
- Unofficial Dockerfile and scripts for building CodeQL databases for the OpenJDK☆48Updated last year
- My CodeQL queries collection☆96Updated last year
- Dependencies with Log4j2 Checklist☆35Updated 3 years ago
- ☆71Updated 3 years ago
- GreHack 2021 CodeQL for Java workshop☆75Updated 3 years ago
- A project demonstrating an app that is vulnerable to Spring Security authorization bypass CVE-2022-31692☆36Updated 2 years ago
- An example repository that demonstrates how the build custom CodeQL bundles that include query customizations through the `Customizations…☆25Updated 2 years ago
- ☆28Updated 3 years ago
- Library for manually creating Java serialization data.☆29Updated 2 years ago
- POC for leaking java version through file and ftp protocols☆24Updated 4 years ago
- Several XStream gadgets ported from ysoserial☆32Updated 3 years ago
- ☆54Updated 3 years ago
- ☆15Updated 3 years ago
- Apache/Alibaba Dubbo <= 2.7.3 PoC Code for CVE-2021-25641 RCE via Deserialization of Untrusted Data; Affects Versions <= 2.7.6 With Diffe…☆52Updated 3 years ago
- Ready to use docker image for CodeQL☆89Updated last year
- 收集规则☆30Updated 2 years ago
- ☆33Updated 2 years ago
- CVE-2020-36179~82 Jackson-databind SSRF&RCE☆80Updated 4 years ago
- 手把手教你写IAST系列☆24Updated last year
- 几条关于CVE-2020-15148(yii2反序列化)的绕过☆75Updated 4 years ago
- jre8u20 gadget☆33Updated 3 years ago
- CodeQL extractor for java, which don't need to compile java source☆10Updated 2 years ago
- CVE-2021-4204: Linux Kernel eBPF Local Privilege Escalation☆61Updated 3 years ago
- bypass JEP290 RaspHook code☆62Updated 4 years ago
- Sample Spring application to Demonstrate the Gateway Actuator☆47Updated 3 years ago
- ☆22Updated 2 years ago
- Template Injection in Email Templates leads to code execution on Jira Service Management Server☆47Updated 3 years ago
- Oracle Access Manager Unauthenticated Attacker Vulnerability CVE-2021-35587☆40Updated 3 years ago
- [CVE-2020-1948] Apache Dubbo Provider default deserialization cause RCE☆16Updated 2 weeks ago
- RCE Exploit for Gitlab < 13.9.4☆51Updated 3 years ago