Alternatives and similar repositories for mcp-joern

Users that are interested in mcp-joern are comparing it to the libraries listed below

• GCMiner / GCMiner
  Artifact for ICSE 2023
  ☆50Updated 3 years ago
• KTH-LangSec / silent-spring
  Silent Spring: Prototype Pollution Leads to Remote Code Execution in Node.js
  ☆75Updated 2 years ago
• GitHubSecurityLab / codeql-zero-to-hero
  CodeQL zero to hero blog post series challenges
  ☆163Updated 3 months ago
• u21h2 / AutoSpear
  AutoSpear
  ☆72Updated 2 years ago
• LFYSec / AgentFuzz
  The source code of [Sec'25] Make Agent Defeat Agent: Automatic Detection of Taint-Style Vulnerabilities in LLM-based Agents
  ☆48Updated 4 months ago
• mo-xiaoxi / HDiff
  ☆27Updated 3 years ago
• JordyZomer / codeql-mcp
  This project runs a Model Context Protocol (MCP) server that wraps the CodeQL query server. It enables tools like [Cursor](https://cursor…
  ☆127Updated 9 months ago
• synacktiv / QLinspector
  Finding Java gadget chains with CodeQL
  ☆184Updated last year
• ASTTeam / Semgrep
  《深入理解Semgrep》Finding vulnerabilities with Semgrep.
  ☆58Updated 2 years ago
• X1r0z / JettyFuzz
  ☆32Updated last year
• antgroup / YASA-Engine
  YASA is an open-source static program analysis project. Its core innovation lies in a unified intermediate representation called UAST, d…
  ☆233Updated last week
• GitHubSecurityLab / codeql-jupyter-kernel
  Jupyter Kernel for CodeQL
  ☆15Updated 11 months ago
• yoshino-s / CVE-2025-1974
  ☆53Updated 10 months ago
• cokeBeer / goot
  a dataflow analysis framework implemented in Go, like soot
  ☆39Updated 3 years ago
• Lekssays / codebadger
  A containerized Model Context Protocol (MCP) server providing static code analysis using Joern's Code Property Graph (CPG) with support f…
  ☆40Updated last month
• testable-eu / sast-testability-patterns
  Testability Pattern Catalogs for SAST
  ☆31Updated 11 months ago
• j3ssie / codeql-docker
  Ready to use docker image for CodeQL
  ☆90Updated 2 years ago
• fullwaywang / QlRules
  Auto-generated CodeQL rules for matching CVE vulnerabilities and variants.
  ☆184Updated last year
• SpringJasmine / Jasmine
  ☆30Updated 3 years ago
• BytecodeDL / graphdb-intellij-plugin
  neo4j plugin of ByteCodeDL for the IntelliJ Platform. ByteCodeDL-Neo4j-IDEA-Plugin
  ☆16Updated 2 years ago
• ovanr / webFuzz
  A grey-box web application Fuzzer
  ☆24Updated last year
• fynch3r / WALAStudy
  WALA 学习笔记
  ☆14Updated 2 years ago
• zbazztian / codeql-debug
  ☆72Updated 3 years ago
• lcark / Tai-e-demo
  用来将Tai-e改造为开箱即用的静态代码安全分析框架的一些demo
  ☆37Updated last year
• Anemone95 / taint-benchmark
  A benchmark to evaluate taint analysis
  ☆28Updated 3 years ago
• blipzip / cve-2022-31692
  A project demonstrating an app that is vulnerable to Spring Security authorization bypass CVE-2022-31692
  ☆35Updated 3 years ago
• polyxss / bxss
  Companion repository of the "Dancer in the Dark" paper.
  ☆21Updated last year
• BytecodeDL / soot-fact-generator
  generate facts from bytecode (source is https://github.com/plast-lab/doop-mirror/tree/master/generators)
  ☆23Updated last year
• AlexAltea / codeql-python
  Python bindings for CodeQL CLI
  ☆54Updated 4 years ago
• cldrn / codeql-queries
  My CodeQL queries collection
  ☆99Updated 2 years ago