hohn/codeql-lab
1
0
Fork 0
mirror of https://github.com/hohn/codeql-lab.git synced 2025-12-15 17:43:04 +01:00
Code Issues Packages Projects Releases Wiki Activity
399 Commits 5 Branches 0 Tags
qllab
Commit Graph

399 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Michael Hohn
07c9d15a76 minor 2025-07-30 21:56:54 -07:00
Michael Hohn
aeb7a5d4bd *** (PARTIAL) Extending Queries with Customizations.qll for C 2025-07-30 21:48:04 -07:00
Michael Hohn
9ba32c29cd *** (PARTIAL) Extending Queries with Customizations.qll for C 2025-07-30 21:45:48 -07:00
Michael Hohn
fa875f4ea0 major revision 2025-07-30 21:26:35 -07:00
Michael Hohn
a43b5a3df8 major revision 2025-07-30 21:15:33 -07:00
Michael Hohn
b770486392 major revision 2025-07-30 20:53:44 -07:00
Michael Hohn
cf01c92a54 add diagram to ** modeling 2025-07-30 16:42:39 -07:00
Michael Hohn
d06f52c643 cleaner ** TODO CodeQL Bundling 2025-07-30 16:36:34 -07:00
Michael Hohn
3869a61388 major revisions 2025-07-30 16:34:54 -07:00
Michael Hohn
c46f2260ca Add full java query as sample 2025-07-30 16:23:06 -07:00
Michael Hohn
59e5f8b6c1 wip: ** TODO codeql-bundling 2025-07-30 16:22:18 -07:00
Michael Hohn
2b46487fb1 revise *** Use models-as-data QL code directly (no graphical editor) 2025-07-30 16:18:53 -07:00
Michael Hohn
202a99e59f revise *** Extending Queries with Customizations.qll for C 2025-07-30 16:11:10 -07:00
Michael Hohn
6583c5a76f revise *** Extending Queries with Customizations.qll for C 2025-07-30 16:10:40 -07:00
Michael Hohn
732e3706e4 clarify *** Customizations via Model Editor: Single-function case (Java SQLite sample) 2025-07-30 15:57:02 -07:00
Michael Hohn
68be793ee2 clarify *** Customizations via Model Editor: Jedis Example (Java Redis client) 2025-07-30 15:52:38 -07:00
Michael Hohn
b65a498fcc revise *** Review: SQLite Injection Workshop, Java *** Customizations via codeql (Java) 2025-07-30 15:43:17 -07:00
Michael Hohn
102c18cce5 Rename directories to include language. Also update files 2025-07-30 15:14:02 -07:00
Michael Hohn
fe1baf7dc1 wip 2025-07-30 14:37:54 -07:00
Michael Hohn
d12c157b25 Add text version of diagram to illustrate library modeling options 2025-07-30 09:45:49 -07:00
Michael Hohn
b34dc262da Add diagram to illustrate library modeling options 2025-07-30 09:45:48 -07:00
Michael Hohn
6abb318e37 Add simple python formatting scripts 2025-07-30 09:45:48 -07:00
Michael Hohn
98eab444ba Add '- note the entry alignment and types between json spec and the yaml data' to codeql-bundling/README.org 2025-07-30 09:45:48 -07:00
Michael Hohn
dc4e1c6cc0 minor 2025-07-30 09:45:48 -07:00
Michael Hohn
b77adb2956 Add '2. Understand the bundle layout' to codeql-bundling/README.org 2025-07-30 09:45:47 -07:00
Michael Hohn
3a766de13b Add 'Tool Setup' section 2025-07-30 09:45:47 -07:00
Michael Hohn
97ef3cc447 initial codeql-bundling/README.org outline 2025-07-30 09:45:47 -07:00
Michael Hohn
6b364e0de2 include codeql bundles and bundler repository 2025-07-30 09:45:44 -07:00
Michael Hohn
0e986f2a45 Merge pull request #2 from knewbury01/mh-jedis-model-editor 
Add starting point for taint debugging java sqli
 2025-07-30 09:39:49 -07:00
Kristen Newbury
1b5de3ff9a Clean code for TaintFlowDebugging.ql 2025-07-30 11:56:28 -04:00
Kristen Newbury
d2595c657f Add starting point for taint debugging java sqli 2025-07-30 11:55:22 -04:00
Michael Hohn
08424828d6 Merge pull request #1 from knewbury01/mh-jedis-model-editor 
Add taint debug notes
 2025-07-25 10:32:08 -07:00
Michael Hohn
63b453bbf6 cleanup 2025-07-18 10:36:52 -07:00
Kristen Newbury
36914dcb52 Add taint debug notes 2025-07-18 13:15:50 -04:00
Michael Hohn
d5732f5509 not needed / already covered: * vulnerable sample, jedis 2025-07-15 10:57:52 -07:00
Michael Hohn
f486bfd9da wip: remove dead link 2025-07-11 11:15:28 -07:00
Michael Hohn
79025c0879 Add models-as-data instructions and files 2025-07-11 11:13:09 -07:00
Michael Hohn
e7996c24b5 wip: outline 2025-07-11 10:58:36 -07:00
Michael Hohn
d33202dee9 wip: README cleanup 2025-07-10 13:11:22 -07:00
Michael Hohn
529264239f wip: add illustration comment 2025-07-10 13:10:28 -07:00
Michael Hohn
fd88b6fba2 wip: ** TODO supplement sources via the model editor, - [ ] We can supplement in different ways 2025-07-10 13:08:44 -07:00
Michael Hohn
ebb17d8592 - supplement codeql: Add to models-as-data 2025-07-10 12:15:03 -07:00
Michael Hohn
6241b52f58 wip: - supplement codeql: Add to FlowSource or a subclass 2025-07-10 11:58:52 -07:00
Michael Hohn
55745c1362 wip: codeql-sqlite: * Using sqlite to illustrate models-as-data 2025-07-09 15:42:16 -07:00
Michael Hohn
e2e555c44c wip: set up codeql-sqlite/ sample 2025-07-09 14:00:54 -07:00
Michael Hohn
0e06b153cc cleanup: * Modeling Jedis as a Dependency in Model Editor 2025-07-09 13:47:48 -07:00
Michael Hohn
85a210f71a cleanup: * Modeling Jedis as a Dependency in Model Editor 2025-07-08 18:00:41 -07:00
Michael Hohn
3324221c8b * TODO vulnerable sample, jedis 2025-07-08 17:45:27 -07:00
Michael Hohn
e8426847f4 cleanup: * Identify usage of injection-related models in existing queries 2025-07-08 17:44:21 -07:00
Michael Hohn
9f75a5c6f5 wip: jedis.model.yml via model editor, and settings for it 2025-07-08 17:38:06 -07:00