skip to content
Go back Go back

Workshop: Finding security vulnerabilities in Java with CodeQL: All roads lead to RCE

CodeQL is GitHub's expressive language and engine for code analysis, which allows you to explore source code to find bugs and security vulnerabilities. During this beginner-friendly workshop, you will learn to write queries in CodeQL to find remote code execution vulnerabilities in the open-source Java framework Apache Dubbo, following in the footsteps of https://securitylab.github.com/research/apache-dubbo.