CodeQL分析闭源Jar包脚本,基于Apache Ant构建CodeQL数据库
☆41Aug 19, 2022Updated 3 years ago
Alternatives and similar repositories for CodeQLAnalyseJar
Users that are interested in CodeQLAnalyseJar are comparing it to the libraries listed below
Sorting:
- Java安全相关,目前主要是CC链研究☆10Sep 1, 2022Updated 3 years ago
- Some ReadObject Sink With JDBC☆243May 8, 2024Updated last year
- CodeQL extractor for java, which don't need to compile java source☆348Nov 25, 2022Updated 3 years ago
- 个人使用CodeQL编写的一些规则☆180Mar 30, 2022Updated 3 years ago
- ☆18Aug 15, 2024Updated last year
- GitHub项目监控 && CodeQL自动扫描 (GitHub project monitoring && CodeQL automatic analysis)☆467Jan 19, 2025Updated last year
- 第十七届全国大学生信息安全竞赛创新实践能力赛决赛 - AWDP☆11Jul 20, 2024Updated last year
- 自动反编译闭源应用,创建codeql数据库☆316Mar 2, 2022Updated 4 years ago
- 阿里巴巴安全SDK,提供SSRF、JDBC、XXE防护能力☆118Oct 15, 2025Updated 5 months ago
- Tai-e学习记录☆19Apr 15, 2024Updated last year
- CodeQLpy是一款基于CodeQL实现的半自动化代码审计工具,目前仅支持java语言。实现从源码反编译,数据库生成,脆弱性发现的全过程,可以辅��助代码审计人员快速定位源码可能存在的漏洞。☆848Jul 6, 2023Updated 2 years ago
- ☆14Aug 4, 2021Updated 4 years ago
- CodeQL Java 全网最全的中文学习资料☆799Mar 18, 2022Updated 4 years ago
- CVE-2023-52251 There is a Remote Code Execution vulnerability provectus/kafka-ui.☆20Jan 23, 2024Updated 2 years ago
- 一个java代码审计辅助工具☆29Nov 2, 2022Updated 3 years ago
- A declarative static analysis tool for jvm bytecode based Datalog like CodeQL☆345Jan 6, 2024Updated 2 years ago
- 域控 学习+攻击大纲☆66Dec 18, 2019Updated 6 years ago
- JAVA 安全靶场,IAST 测试用例,JAVA漏洞复现,代码审计,SAST测试用例,安全扫描(主动和被动),JAVA漏洞靶场,RASP测试用例 ; Java Security Testbed, IAST Test Cases, Java Vulnerability R…☆273Updated this week
- 代码审计关键词扫描工具☆11Apr 29, 2024Updated last year
- cve-2022-34169 延伸出的Jdk Xalan的payload自动生成工具,可根据不同的Jdk生成出其所对应的xslt文件☆93Jan 17, 2023Updated 3 years ago
- A vul-finder for loading CPG and automated finding vul-call-chains☆72Jul 22, 2025Updated 7 months ago
- neo4j plugin of ByteCodeDL for the IntelliJ Platform. ByteCodeDL-Neo4j-IDEA-Plugin☆16Dec 28, 2023Updated 2 years ago
- Common Exploitation Techniques for Java RCE Vulnerabilities in Real-World Scenarios | 实战场景较通用的 Java Rce 相关漏洞的利用方式☆544Mar 6, 2025Updated last year
- Lessons for syntaxflow zero to hero☆55Sep 14, 2024Updated last year
- 方便自己搭建codeql环境和数据库的工具。☆64Aug 16, 2025Updated 7 months ago
- ☆10Jul 21, 2022Updated 3 years ago
- Java RMI反序列化漏洞插件☆49Jun 11, 2021Updated 4 years ago
- 简单实现的 Java RASP☆35Oct 14, 2020Updated 5 years ago
- Collect JSP webshell of various implementation methods. 收集JSP Webshell的各种姿势☆15Sep 22, 2021Updated 4 years ago
- CodeQL 寻找 JNDI利用 Lookup接口☆166Apr 10, 2022Updated 3 years ago
- Tao(道)一款用于java语言函数调用关系生成的工具,致力于提高java代码审计效率。☆11Jul 2, 2024Updated last year
- 000☆16Mar 30, 2022Updated 3 years ago
- Extract website information from Vue☆286Aug 29, 2023Updated 2 years ago
- protoscanner是一个使用纯Go编写的协议识别仓库,脱胎于NMAP☆28Aug 30, 2023Updated 2 years ago
- javaDeserializeLabs☆70Apr 18, 2023Updated 2 years ago
- SpringBootAdmin-thymeleaf-SSTI which can cause RCE☆86Jul 18, 2023Updated 2 years ago
- 用codeql分析grafana最新任意文件读取☆11Dec 10, 2021Updated 4 years ago
- Java web路由内存分析工具☆438May 22, 2025Updated 9 months ago
- A CAT called tabby ( Code Analysis Tool )☆1,640Jan 17, 2026Updated 2 months ago