yaklang/syntaxflow

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/yaklang/syntaxflow)

yaklang / syntaxflow

Lessons for syntaxflow zero to hero

☆55

Alternatives and similar repositories for syntaxflow

Users that are interested in syntaxflow are comparing it to the libraries listed below

Sorting:

WDLegend / gokart-2
View on GitHub
☆18Dec 25, 2024Updated last year
yaklang / ssa.to
View on GitHub
https://ssa.to main page for ssa compiler utils
☆56Updated this week
cwkiller / ClassLinefix
View on GitHub
Java bytecode line number restoration tool
☆135Aug 31, 2025Updated 6 months ago
l3yx / Choccy
View on GitHub
GitHub项目监控 && CodeQL自动扫描 (GitHub project monitoring && CodeQL automatic analysis)
☆467Jan 19, 2025Updated last year
lcark / Tai-e-demo
View on GitHub
用来将Tai-e改造为开箱即用的静态代码安全分析框架的一些demo
☆37Apr 17, 2024Updated last year
phith0n / tls_proxy
View on GitHub
A lightweight reverse proxy server that converts TLS traffic to TCP, allowing secure communication between clients and upstream servers.
☆79Aug 16, 2024Updated last year
SpringKill-team / CodeAuditAssistant
View on GitHub
🔍 CodeAuditAssistant - JetBrains Code Audit Plugin (Beta) ⚡ Deep Call-Chain Tracking | 🚀 Method/Class Search | 🔥 Prebuilt Vuln Sink…
☆781Mar 14, 2026Updated last week
Zjackky / CodeScan
View on GitHub
一款轻量级匹配Sink点的代码审计扫描器，为了帮助红队过程中快速代码审计的小工具
☆409Oct 6, 2024Updated last year
jar-analyzer / jar-analyzer
View on GitHub
Jar Analyzer - 一个 JAR 包 GUI 分析工具，方法调用关系搜索，方法调用链 DFS 算法分析，模拟 JVM 的污点分析验证 DFS 结果，字符串搜索，Java Web 组件入口分析，CFG 程序分析，JVM 栈帧分析，自定义表达式搜索，紧跟 AI 技术发…
☆1,948Updated this week
Chave0v0 / API-Highlighter
View on GitHub
API Highlighter 是一个用于 BurpSuite 的插件，主要用于 web 应用迭代安全测试时高亮指定的新增接口，该插件最初用 Python 编写，现重构为 Java 版本。
☆42Feb 19, 2025Updated last year
alibaba / seckit
View on GitHub
阿里巴巴安全SDK，提供SSRF、JDBC、XXE防护能力
☆118Oct 15, 2025Updated 5 months ago
wdeilim / Audit-Rules
View on GitHub
A curated list of audit rules which extract from Source Code Auditing tools.
☆15Feb 19, 2020Updated 6 years ago
pen4uin / java-echo-generator
View on GitHub
一款支持自定义的 Java 回显载荷生成工具｜A customizable Java echo payload generation tool.
☆462Jan 12, 2025Updated last year
yaklang / yaklang
View on GitHub
A programming language exclusively designed for cybersecurity
☆534Updated this week
KimJun1010 / inspector
View on GitHub
IDEA代码审计辅助插件（深信服深蓝实验室天威战队强力驱动）
☆583Mar 10, 2025Updated last year
ttonys / CodeQLAnalyseJar
View on GitHub
CodeQL分析闭源Jar包脚本，基于Apache Ant构建CodeQL数据库
☆41Aug 19, 2022Updated 3 years ago
su18 / rasp-vuln
View on GitHub
当死去的记忆突然开始攻击我，我终于想起了我还写过一款十分十分垃圾的 rasp 靶场。
☆88Jul 21, 2022Updated 3 years ago
joernio / flatgraph
View on GitHub
☆30Updated this week
yyhuni / shiroMemshell
View on GitHub
利用shiro反序列化注入冰蝎内存马
☆37Dec 19, 2021Updated 4 years ago
luelueking / CVE-2022-25845-In-Spring
View on GitHub
CVE-2022-25845(fastjson1.2.80) exploit in Spring Env!
☆108Nov 7, 2024Updated last year
luelueking / Deserial_Sink_With_JDBC
View on GitHub
Some ReadObject Sink With JDBC
☆243May 8, 2024Updated last year
alipay / ant-application-security-testing-benchmark
View on GitHub
xAST评价体系，让安全工具不再“黑盒”. The xAST evaluation benchmark makes security tools no longer a "black box".
☆467Jan 15, 2026Updated 2 months ago
tabby-sec / tabby
View on GitHub
A CAT called tabby ( Code Analysis Tool )
☆1,641Jan 17, 2026Updated 2 months ago
Whoopsunix / utf-8-overlong-encoding
View on GitHub
抽离出 utf-8-overlong-encoding 的序列化逻辑，实现 2 3 字节加密序列化数组
☆140Mar 11, 2024Updated 2 years ago
bmjoker / Nuclei2use
View on GitHub
nuclei + .yaml = poc
☆14Oct 16, 2023Updated 2 years ago
chenlvtang / TinyRASP
View on GitHub
针对Java Web的RASP(Runtime application self-protection )漏洞防护系统。
☆41Sep 10, 2025Updated 6 months ago
datouo / CTF-Java-Gadget
View on GitHub
CTF-Java-Gadget专注于收集CTF中Java赛题的反序列化片段
☆282Dec 13, 2024Updated last year
ZhuriLab / Yi
View on GitHub
项目监控工具以及 Codeql 自动运行
☆313Apr 13, 2023Updated 2 years ago
yhy0 / RustScan
View on GitHub
一个调用 rustscan 进行端口扫描的 go 库
☆22Dec 30, 2021Updated 4 years ago
GCMiner / GCMiner
View on GitHub
Artifact for ICSE 2023
☆50Sep 24, 2022Updated 3 years ago
feiweiliang / PomEye
View on GitHub
一款根据pom.xml获取引用的第三方组件的版本号并识别组件漏洞的工具
☆22May 17, 2023Updated 2 years ago
phith0n / vueinfo
View on GitHub
Extract website information from Vue
☆286Aug 29, 2023Updated 2 years ago
antgroup / YASA-Engine
View on GitHub
YASA is an open-source static program analysis project. Its core innovation lies in a unified intermediate representation called UAST, d…
☆255Mar 5, 2026Updated 2 weeks ago
lokerxx / JavaVul
View on GitHub
JAVA 安全靶场，IAST 测试用例，JAVA漏洞复现，代码审计，SAST测试用例，安全扫描（主动和被动），JAVA漏洞靶场，RASP测试用例； Java Security Testbed, IAST Test Cases, Java Vulnerability R…
☆273Updated this week
l4yn3 / micro_service_seclab
View on GitHub
Java漏洞靶场
☆381Dec 25, 2023Updated 2 years ago
ice-doom / CodeQLRule
View on GitHub
个人使用CodeQL编写的一些规则
☆180Mar 30, 2022Updated 3 years ago
qqliushiyu / AIxVuln_Web
View on GitHub
一个基于LLM的多Agent全流程漏洞挖掘项目，支持PHP、Java、Python、Go、Node.js等多种语言项目环境搭建、漏洞分析、漏洞验证、报告产出。支持多Agent并发高效率完成漏洞挖掘任务，下个版本将会大更新。
☆117Jan 30, 2026Updated last month
fast-sp-2023 / fast
View on GitHub
☆32May 1, 2025Updated 10 months ago
waderwu / extractor-java
View on GitHub
CodeQL extractor for java, which don't need to compile java source
☆348Nov 25, 2022Updated 3 years ago