AppThreat / atomLinks
atom is a novel intermediate representation for applications and a standalone tool that is powered by chen.
β71Updated last week
Alternatives and similar repositories for atom
Users that are interested in atom are comparing it to the libraries listed below
Sorting:
- Code Hierarchy Exploration Net (chen)β21Updated last week
- π§ͺ Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.β40Updated 7 months ago
- A very simple open source implementation of Google's Project Naptimeβ161Updated 4 months ago
- Trail of Bits Testing Handbookβ77Updated this week
- Manager of third-party sources of Semgrep rules πβ87Updated last year
- The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebasβ¦β148Updated last year
- Focused malicious code detection ruleset, with a high protection-to-noise ratioβ123Updated 5 months ago
- β79Updated 6 months ago
- Generative and mutative fuzzer for Kubernetes admission controller chains by automatically parsing the cluster api specification.β74Updated last year
- An open-source dataset of malicious software packages found in the wild, 100% vetted by humans.β214Updated this week
- A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and oβ¦β77Updated 2 weeks ago
- A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling,β¦β135Updated last year
- πA cutting edge context aware GraphQL API fuzzing tool!β143Updated last week
- Create notes during a security code review in VSCode π Import your favorite SAST tool findings π οΈ and collaborate with others π€β134Updated 4 months ago
- Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.1, purl, and versβ¦β122Updated this week
- Data about all known supply-chain attacks through historyβ58Updated 2 months ago
- Automated vulnerability discovery and annotationβ67Updated last year
- Monthly CVE Statsβ43Updated this week
- β48Updated last year
- ChainReactor is a research project that leverages AI planning to discover exploitation chains for privilege escalation on Unix systems. Tβ¦β49Updated 9 months ago
- A collection of Semgrep rules which followed security guidelines for .NET and Java.β23Updated 3 years ago
- β81Updated 3 weeks ago
- A comprehensive list of software composition analysis tools.β151Updated last year
- Demonstrates how a malicious dependency could negatively impact the build output.β24Updated last year
- β139Updated 2 months ago
- future-proof vulnerability detection benchmark, based on CVEs in open-source reposβ59Updated this week
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. β¦β65Updated last month
- β47Updated this week
- Secrets scanner that understands codeβ188Updated last year
- OSV-SCALIBR: A library for Software Composition Analysisβ398Updated this week