Skip to content

WhiteLee03 / learning-codeql Public

forked from SummerSec/learning-codeql

Notifications You must be signed in to change notification settings
Fork 0
Star 0

CodeQL Java 全网最全的中文学习资料

0 stars 85 forks Branches Tags Activity

WhiteLee03/learning-codeql

Folders and files

Name		Name	Last commit message	Last commit date
Latest commit History 188 Commits
.github		.github
CodeQL Queries		CodeQL Queries
codeql-custom-queries-java		codeql-custom-queries-java
codeql-docs		codeql-docs
codeql-java-vul		codeql-java-vul
codeql-java		codeql-java
.gitattributes		.gitattributes
PartialPathGraphImpl.ql		PartialPathGraphImpl.ql
README.md		README.md
TaintTrackingAdditionalTaintStepImpl.ql		TaintTrackingAdditionalTaintStepImpl.ql
TaintTrackingImpl.ql		TaintTrackingImpl.ql
_config.yml		_config.yml

Repository files navigation

Learning-CodeQL

前言

CodeQL学习笔记 只有Java

加入运行截屏帮助理解CodeQL代码

笔记目前单纯为个人理解,如有错误还请不吝赐教。

格式说明

目前都是中英文对照翻译,翻译大部分是机翻,会小幅度修改一部分。

目录	内容
codeql-custom-queries-java	codeql的一些语法规则
codeql-java	codeql对于Java方向上的内容
codeql-docs	codeql官方对codeql格式要求文档等
codeql-java	CodeQL官方的实验并学习如何为由Java代码库生成的CodeQL数据库编写有效和高效的查询。
codeql-java-vul	java vul QL

推荐

ps: 排列顺序由本人发现时间为主,CodeQL 频道里面包含大量视频。

Youtube	Twitter	Github	文章	其他
Discover vulnerabilities with CodeQL by: Boik Su	@boik_su	codeql_chinese	Github 官方文档	Github 官方API
[Live Stream] CodeQL Code Scanning Language Tutorial	@SummerSec	Github's CodeQL	haby0 's 博客	Github research 文档
Securing your code with CodeQL with Sasha Rosenbaum! - OWASP DevSlop	@haby013	Github's securitylab	使用codeql 挖掘 ofcms
What is GitHub Code Scanning? Find VULNERABILITIES in your code	@GHSecurityLab	CodeQL Queries for Insecure JMS Deserialization	代码分析引擎 CodeQL 初体验
3,000ドル CodeQL query for finding LDAP Injection - Github Security Lab	@pwntester	Apache Struts CVE-2018-11776	使用codeql挖掘fastjson利用链
CodeQL 频道	codeql-jdk-docke	使用 CodeQL 挖掘 CVE-2020-9297
CodeQL as an auditing oracle - POC 2020	codeql-dubbo-workshop	codeql学习——污点分析
mbuf-oflow: Finding Vulnerabilities In iOS/MacOS Networking Code	LookupInterface	如何用CodeQL数据流复现 apache kylin命令执行漏洞
Community-powered security analysis with CodeQL - GitHub Universe 2020	CodeQL从入门到放弃
Using GitHub code scanning and CodeQL to detect traces of Solorigate and other backdoors	CodeQL 快速上手
PII data leaks: Identifying personal information in logs with QL	CodeQL与XRay联动实现黑白盒双重校验
使用 CodeQL 分析闭源 Java 程序
finding-insecure-jwt-signature-validation-with-codeql
Apache Dubbo: All roads lead to RCE
CodeQL从0到1(内附Shiro检测demo)

Stargazers over time

About

CodeQL Java 全网最全的中文学习资料

Resources

Stars

Watchers

Forks

Report repository

Releases

No releases published

Packages

No packages published

Languages

CSS 61.9%
CodeQL 10.4%
JavaScript 9.3%
HTML 7.9%
Python 5.2%
SCSS 5.1%
Ruby 0.2%