Alternatives and similar repositories for codeql

Users that are interested in codeql are comparing it to the libraries listed below

• kezibei / fastjson_payload
  ☆227Updated 2 months ago
• ice-doom / CodeQLRule
  个人使用CodeQL编写的一些规则
  ☆176Updated 3 years ago
• Lonely-night / fastjsonVul
  fastjson 80 远程代码执行漏洞复现
  ☆198Updated 2 years ago
• yuanhaiGreg / Fuzz-Dict
  一些常见字典
  ☆172Updated 4 years ago
• testtttter / ACAF
  Auto Code Audit Framework for Java
  ☆96Updated 3 years ago
• R17a-17 / JavaVulnSummary
  Java漏洞分析汇合
  ☆142Updated 3 years ago
• zxcvbn001 / CodeReview
  代码审计总结
  ☆82Updated 4 years ago
• flowerwind / JspFinder
  一款通过污点追踪发现Jsp webshell的工具(A tool to find Jsp Webshell through stain tracking)
  ☆178Updated 3 years ago
• keven1z / simpleIAST
  simpleIAST- 基于污点追踪的灰盒漏洞扫描工具。
  ☆89Updated last week
• ffffffff0x / 403-fuzz
  针对 403 页面的 fuzz 脚本
  ☆125Updated 3 years ago
• timwhitez / Frog-checkCDN
  批量检查目标是否为cdn
  ☆140Updated 4 years ago
• r00t4dm / aLIEz
  ☆195Updated 11 months ago
• safe6Sec / MemoryShell
  内存马学习
  ☆171Updated 3 years ago
• yaklang / syntaxflow
  Lessons for syntaxflow zero to hero
  ☆52Updated 11 months ago
• woodpecker-appstore / jexpr-encoder-utils
  Java表达式语句生成器
  ☆193Updated last year
• YYHYlh / Apache-Dubbo-CVE-2023-23638-exp
  Apache Dubbo (CVE-2023-23638)漏洞利用的工程化实践
  ☆226Updated 2 years ago
• CTF-MissFeng / jsForward
  解决web及移动端H5数据加密Burp调试问题
  ☆185Updated 3 years ago
• TheKingOfDuck / RCEFuzzer
  一个以fuzz为中心思想的被动扫描工具
  ☆157Updated last year
• Ciyfly / woodpecker
  兼容xray nuclei yaml格式 以及go代码格式的poc验证扫描器
  ☆185Updated 2 years ago
• depycode / fastjson-c3p0
  fastjson不出网利用、c3p0
  ☆252Updated 4 years ago
• col4-eng / cloud-native-security
  云原生安全
  ☆37Updated 3 years ago
• minhangxiaohui / DecodeSomeJSPWebshell
  冰蝎、哥斯拉 jsp webshell通信流量解密器
  ☆146Updated 2 years ago
• ZhuriLab / Yi
  项目监控工具 以及 Codeql 自动运行
  ☆312Updated 2 years ago
• kezibei / Urldns
  ☆337Updated last year
• f0ng / JavaFileDict
  Java应用的一些配置文件字典，来源于公开的字典与平时收集
  ☆315Updated last year
• yuyan-sec / druid_sessions
  获取 alibaba druid 一些 sessions , sql , urls
  ☆282Updated 4 months ago
• su18 / rasp-vuln
  当死去的记忆突然开始攻击我，我终于想起了我还写过一款十分十分垃圾的 rasp 靶场。
  ☆78Updated 3 years ago
• fengupupup / RocB
  鹏 RocB - Java代码审计IDEA插件 SAST
  ☆150Updated 3 years ago
• hanc00l / pocGoby2Xray
  将Goby的json格式Poc转为xray的yaml格式Poc
  ☆131Updated 2 years ago
• xyy-ws / NoAgent-memshell-scanner
  ☆108Updated 3 years ago