# Bug Hunting with CodeQL, an rsyslog Case Study

This repo contains the CodeQL queries used in the [Bug Hunting with CodeQL, an rsyslog Case Study](https://securitylab.github.com/research/bug-hunting-codeql-rsyslog) blog post.

- [Discovering program input](01_find_data_input.ql)
- [Data flow exploration](02_find_data_pointer_usage.ql)
- [Data flow exploration (extended)](03_find_data_pointer_usage_extended.ql)
- [Finding data parsers](04_find_parsers.ql)
- [Finding tainted loops](05_find_tainted_iterations.ql)