Alternatives and similar repositories for codeql:

Users that are interested in codeql are comparing it to the libraries listed below

• R17a-17 / JavaVulnSummary
  Java漏洞分析汇合
  ☆143Updated 3 years ago
• ax1sX / RouteCheck-Alpha
  A Java Route Collection Tool
  ☆90Updated 5 months ago
• Lonely-night / fastjsonVul
  fastjson 80 远程代码执行漏洞复现
  ☆190Updated 2 years ago
• zxcvbn001 / CodeReview
  代码审计总结
  ☆80Updated 3 years ago
• su18 / rasp-vuln
  当死去的记忆突然开始攻击我，我终于想起了我还写过一款十分十分垃圾的 rasp 靶场。
  ☆78Updated 2 years ago
• winezer0 / springboot_scan
  支持自动化的切换请求方式、自动化的请求重试、以完整的扫描Springboot路径
  ☆2Updated 2 years ago
• woodpecker-appstore / jexpr-encoder-utils
  Java表达式语句生成器
  ☆185Updated last year
• xyy-ws / NoAgent-memshell-scanner
  ☆106Updated 3 years ago
• kezibei / fastjson_payload
  ☆204Updated 4 months ago
• yuyan-sec / druid_sessions
  获取 alibaba druid 一些 sessions , sql , urls
  ☆231Updated last year
• KpLi0rn / ysoserial
  在原有yso基础上实现依赖分离，内存马注入等功能。A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆69Updated 3 years ago
• SuperZero / CVE-2023-33246
  Apache RocketMQ 远程代码执行漏洞(CVE-2023-33246) Exploit
  ☆103Updated last year
• j2ekim / YonyouNC_Tip
  ☆168Updated 2 years ago
• Er1cccc / ACAF
  Auto Code Audit Framework for Java
  ☆97Updated 3 years ago
• TheKingOfDuck / RCEFuzzer
  一个以fuzz为中心思想的被动扫描工具
  ☆155Updated last year
• xiaopan233 / GenerateNoHard
  本工具的定位是快速生成Java安全相关的Payload，如内存马、反序列化链、JNDI url、Fastjson等，动态生成相关Payload，并附带相应的文档。
  ☆90Updated 2 years ago
• yaklang / syntaxflow
  Lessons for syntaxflow zero to hero
  ☆47Updated 4 months ago
• Lotus6 / FileMonitor
  Java命令行文件监控小工具(代码审计)
  ☆100Updated 3 years ago
• AlphabugX / godzilla_decode
  Godzilla java Decode,哥斯拉jsp(内存马)流量解密
  ☆105Updated 3 years ago
• Whoopsunix / fastjson_study
  Abandoned - fastjson 1.2.24-1.2.80 poc & vulns env & how to check vul
  ☆88Updated last year
• 8ypass / weblogicExploit
  weblogic历史漏洞利用工具
  ☆90Updated 2 years ago
• yuanhaiGreg / Fuzz-Dict
  一些常见字典
  ☆161Updated 3 years ago
• darkarmorlab / video-api-check
  check hikvision/ys7 api
  ☆65Updated last year
• NewBeginning6 / Subdir-vul-find
  ☆88Updated last year
• ce-automne / FastjsonPatrol
  一款探测fastjson漏洞的BurpSuite插件
  ☆60Updated 2 years ago
• hanc00l / pocGoby2Xray
  将Goby的json格式Poc转为xray的yaml格式Poc
  ☆130Updated 2 years ago
• Firebasky / ctf-Challenge
  是一些比赛中的好题，加上自己出的一些。。。
  ☆44Updated 2 years ago
• passer-W / snakeyaml-memshell
  springboot跨线程注入内存马
  ☆115Updated 2 years ago
• SummerSec / LookupInterface
  CodeQL 寻找 JNDI利用 Lookup接口
  ☆163Updated 2 years ago
• Un1kTeam / Un1kFiles
  适用于burpsuite渗透工具的多类型恶意文件代码、漏洞测试payload、脚本代码快速获取复制的在线辅助插件。
  ☆65Updated 3 years ago