Alternatives and similar repositories for codeql:

Users that are interested in codeql are comparing it to the libraries listed below

• Lonely-night / fastjsonVul
  fastjson 80 远程代码执行漏洞复现
  ☆192Updated 2 years ago
• yaklang / syntaxflow
  Lessons for syntaxflow zero to hero
  ☆50Updated 7 months ago
• threedr3am / dubbo-exp
  dubbo快速利用exp，基本上老版本覆盖100%。
  ☆105Updated last year
• xyy-ws / NoAgent-memshell-scanner
  ☆107Updated 3 years ago
• su18 / rasp-vuln
  当死去的记忆突然开始攻击我，我终于想起了我还写过一款十分十分垃圾的 rasp 靶场。
  ☆77Updated 2 years ago
• zxcvbn001 / CodeReview
  代码审计总结
  ☆80Updated 3 years ago
• winezer0 / springboot_scan
  支持自动化的切换请求方式、自动化的请求重试、以完整的扫描Springboot路径
  ☆3Updated 3 years ago
• ax1sX / RouteCheck-Alpha
  A Java Route Collection Tool
  ☆92Updated 8 months ago
• fengupupup / RocB
  鹏 RocB - Java代码审计IDEA插件 SAST
  ☆148Updated 3 years ago
• ice-doom / CodeQLRule
  个人使用CodeQL编写的一些规则
  ☆176Updated 3 years ago
• testtttter / ACAF
  Auto Code Audit Framework for Java
  ☆96Updated 3 years ago
• SummerSec / LookupInterface
  CodeQL 寻找 JNDI利用 Lookup接口
  ☆163Updated 3 years ago
• woodpecker-appstore / jexpr-encoder-utils
  Java表达式语句生成器
  ☆187Updated last year
• ffffffff0x / 403-fuzz
  针对 403 页面的 fuzz 脚本
  ☆124Updated 3 years ago
• flowerwind / JspFinder
  一款通过污点追踪发现Jsp webshell的工具(A tool to find Jsp Webshell through stain tracking)
  ☆175Updated 3 years ago
• whwlsfb / SpringSpider
  Spring Actuator端点的BurpSuite被动扫描插件。
  ☆196Updated 2 years ago
• passer-W / snakeyaml-memshell
  springboot跨线程注入内存马
  ☆117Updated 3 years ago
• ThestaRY7 / supplier
  主流供应商的一些攻击性漏洞汇总
  ☆106Updated 3 years ago
• yuanhaiGreg / Fuzz-Dict
  一些常见字典
  ☆167Updated 3 years ago
• kezibei / fastjson_payload
  ☆209Updated 7 months ago
• depycode / fastjson-c3p0
  fastjson不出网利用、c3p0
  ☆252Updated 3 years ago
• cckuailong / YarnRpcRCE
  ☆81Updated 3 years ago
• R17a-17 / JavaVulnSummary
  Java漏洞分析汇合
  ☆142Updated 3 years ago
• depycode / fastjson-local-echo
  基于dbcp的fastjson rce 回显
  ☆191Updated 3 years ago
• Whoopsunix / fastjson_study
  Abandoned - fastjson 1.2.24-1.2.80 poc & vulns env & how to check vul
  ☆91Updated last year
• FFreestanding / JavaUnserializeChain
  自己积累的一些Java反序列化利用链
  ☆87Updated 2 years ago
• Lotus6 / FileMonitor
  Java命令行文件监控小工具(代码审计)
  ☆101Updated 3 years ago
• mrknow001 / xxl-job-rce
  xxl-job未授权命令执行
  ☆108Updated 3 years ago
• YYHYlh / Dubbo-Scan
  一款让你不只在dubbo-sample、vulhub或者其他测试环境里检测和利用成功的Apache Dubbo 漏洞检测工具。
  ☆167Updated last year
• SuperZero / CVE-2023-33246
  Apache RocketMQ 远程代码执行漏洞(CVE-2023-33246) Exploit
  ☆106Updated last year