GeekMasher / ghastoolkitLinks
GitHub Advanced Security Python Toolkit
☆14Updated this week
Alternatives and similar repositories for ghastoolkit
Users that are interested in ghastoolkit are comparing it to the libraries listed below
Sorting:
- [Deprecated] GitHub's Field Team's CodeQL Custom Queries, Suites, and Configurations. See GitHubSecurityLab/CodeQL-Community-Packs instea…☆85Updated last year
- GitHub Action to generate GitHub Advanced Security (GHAS) metrics report☆18Updated last year
- Action to retrofit a CodeQL bundle with additional queries, libraries, and customizations☆27Updated last year
- Action to detect if a secret is initially detected in a pull request☆19Updated this week
- ☆75Updated this week
- Examples of Custom Secret Scanning Patterns for use with GitHub Secret Protection/Advanced Security☆170Updated this week
- Integrate CodeQL into CI/CD pipelines, using the CodeQL CLI Bundle for Automated Code Scanning☆23Updated last month
- GitHub Advanced Security Pull Request Security Team required review GitHub App☆36Updated last week
- GitHub Secret Scanning Auto Remediator (GSSAR)☆46Updated last month
- Original workshops and staging area for new ones☆16Updated 7 months ago
- GH CLI CodeQL Scan Extension☆20Updated 5 months ago
- Optimize the utilization of GHAS licenses in an enterprise (or organization)☆15Updated 4 months ago
- A solution which drops GitHub Code Scanning Results from Repositories to Slack Channels.☆18Updated last year
- Put the power of CodeQL in your pocket, take it with you to any CI 🚀☆12Updated 2 years ago
- GitHub Advance Security Compliance Action☆134Updated 3 years ago
- Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.☆122Updated 2 years ago
- Script to audit GitHub Action Workflow files for potential vulnerabilities.☆155Updated last year
- The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…☆160Updated last year
- A tool that aims to bulk automates the enablement of GitHub Code Scanning, Secret Scanning and Dependabot across multiple repositories.☆158Updated last year
- Semgrep rules corresponding to the OWASP ASVS standard☆27Updated 5 years ago
- An example repository that demonstrates how the build custom CodeQL bundles that include query customizations through the `Customizations…☆25Updated 3 years ago
- This repository contains pipeline files for various CI/CD systems, illustrating how to integrate the CodeQL CLI Bundle for Automated Code…☆27Updated 2 years ago
- A curated list of awesome CodeQL resources.☆69Updated 2 weeks ago
- Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)☆61Updated 9 months ago
- GitHub Advanced Security Policy as Code☆95Updated last month
- Sample GitHub App which monitors and enforces rules for code scanning, Dependabot, and secret scanning alerts☆23Updated 10 months ago
- CodeQL Extractor, Library, and Queries for Infrastructure as Code☆58Updated last week
- This repository creates pull requests to push a GitHub Actions workflow to a collection of workflows.☆47Updated 2 years ago
- SARIF Microsoft Visual Studio Code extension☆132Updated this week
- GitHub Code Scanning Mean Time to Remediate (GCSMTTR)☆14Updated 2 years ago