《深入理解Semgrep》Finding vulnerabilities with Semgrep.
☆58Jul 20, 2023Updated 2 years ago
Alternatives and similar repositories for Semgrep
Users that are interested in Semgrep are comparing it to the libraries listed below
Sorting:
- ☆10Jul 21, 2022Updated 3 years ago
- Java安全相关,目前主要是CC链研究☆10Sep 1, 2022Updated 3 years ago
- GitHub项目监控 && CodeQL自动扫描 (GitHub project monitoring && CodeQL automatic analysis)☆465Jan 19, 2025Updated last year
- Android Security Bug Queries for CheckMarx☆20Sep 13, 2022Updated 3 years ago
- A list for Spring Security☆128Jan 16, 2024Updated 2 years ago
- Extract React router info from React based website within browser☆44Mar 29, 2024Updated last year
- ☆22Dec 5, 2022Updated 3 years ago
- 灯塔v2.6.2_docker版本☆15Oct 13, 2025Updated 4 months ago
- CVE-2024-37081: Multiple Local Privilege Escalation in VMware vCenter Server☆10Jul 6, 2024Updated last year
- Tao(道)一款用于java语言函数调用关系生成的工具,致力于提高java代码审计效率。☆11Jul 2, 2024Updated last year
- 《深入理解SAST静态应用安全测试》Static Application Security Testing.☆390Sep 28, 2025Updated 5 months ago
- 利用angr去除ollvm的虚假控制流☆14Mar 20, 2021Updated 4 years ago
- ManageEngine ADManager Command Injection☆11Oct 2, 2023Updated 2 years ago
- 大模型辅助SAST静态代码分析的Demo系统☆13Feb 19, 2025Updated last year
- ☆10May 17, 2023Updated 2 years ago
- 《深入理解CodeQL》Finding vulnerabilities with CodeQL.☆1,754Nov 21, 2023Updated 2 years ago
- IDOR bypass fuzz 权限绕过burp 插件 fuzz (shiro 等)☆27Sep 1, 2021Updated 4 years ago
- Playground for Race Condition attack☆24Mar 18, 2023Updated 2 years ago
- ☆13Jan 22, 2026Updated last month
- javaGGC for generate commons.collections gadget chain☆12Nov 10, 2021Updated 4 years ago
- 一本用代码写出来的Fuzzing书籍:The Fuzzing Book☆13Sep 30, 2023Updated 2 years ago
- CVE-2024-30056 Microsoft Edge (Chromium-based) Information Disclosure Vulnerability☆17May 27, 2024Updated last year
- 自动反编译闭源应用,创建codeql数据库☆316Mar 2, 2022Updated 3 years ago
- CodeQL zero to hero blog post series challenges☆163Sep 29, 2025Updated 5 months ago
- A declarative static analysis tool for jvm bytecode based Datalog like CodeQL☆345Jan 6, 2024Updated 2 years ago
- A CAT called tabby ( Code Analysis Tool )☆1,637Jan 17, 2026Updated last month
- Semgrep Community Edition rules, maintained by Semgrep and the community. Free to use under the Semgrep Rules License.☆1,085Updated this week
- This is a SOAP service written in C# that has intentional SQL injection vulnerabilties.☆21Nov 27, 2016Updated 9 years ago
- java source code static code analysis and danger function identify prog☆534Feb 18, 2019Updated 7 years ago
- CVE-2023-52251 There is a Remote Code Execution vulnerability provectus/kafka-ui.☆20Jan 23, 2024Updated 2 years ago
- 承影用的 nuclei 漏扫模板☆15Jun 11, 2023Updated 2 years ago
- RyzeSCA 是M-SEC社区一款强化 DevSecOps 的软件成分分析工具,能在软件开发过程中分析和管理开源组件的安全风险。☆38Dec 28, 2023Updated 2 years ago
- IDA Hexrays To Joern☆44Nov 7, 2024Updated last year
- A in-the-wild V8 type confusion bug.☆29Aug 8, 2025Updated 6 months ago
- CodeQL分析闭源Jar包脚本,基于Apache Ant构建CodeQL数据库☆41Aug 19, 2022Updated 3 years ago
- Java安全学习历程☆41Jul 7, 2023Updated 2 years ago
- xAST评价体系,让安全工具不再“黑盒”. The xAST evaluation benchmark makes security tools no longer a "black box".☆463Jan 15, 2026Updated last month
- a browser fuzzer☆47Mar 15, 2024Updated last year
- GH CLI CodeQL Scan Extension☆20Sep 4, 2025Updated 5 months ago