GeekMasher / ghastoolkitLinks
GitHub Advanced Security Python Toolkit
☆14Updated 3 weeks ago
Alternatives and similar repositories for ghastoolkit
Users that are interested in ghastoolkit are comparing it to the libraries listed below
Sorting:
- Action to retrofit a CodeQL bundle with additional queries, libraries, and customizations☆27Updated last year
- Action to detect if a secret is initially detected in a pull request☆17Updated 2 weeks ago
- [Deprecated] GitHub's Field Team's CodeQL Custom Queries, Suites, and Configurations. See GitHubSecurityLab/CodeQL-Community-Packs instea…☆85Updated last year
- Examples of Custom Secret Scanning Patterns☆168Updated last month
- GH CLI CodeQL Scan Extension☆20Updated 2 months ago
- ☆76Updated 2 weeks ago
- GitHub Action to generate GitHub Advanced Security (GHAS) metrics report☆18Updated 9 months ago
- An example repository that demonstrates how the build custom CodeQL bundles that include query customizations through the `Customizations…☆25Updated 3 years ago
- The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…☆153Updated last year
- Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.☆119Updated last year
- Original workshops and staging area for new ones☆16Updated 4 months ago
- Script to audit GitHub Action Workflow files for potential vulnerabilities.☆156Updated last year
- A React-based component for viewing SARIF files.☆99Updated last year
- A curated list of awesome CodeQL resources.☆55Updated 2 months ago
- SARIF Microsoft Visual Studio Code extension☆122Updated 3 months ago
- Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)☆59Updated 7 months ago
- Semgrep rules corresponding to the OWASP ASVS standard☆28Updated 5 years ago
- Optimize the utilization of GHAS licenses in an enterprise (or organization)☆15Updated last month
- GitHub Secret Scanning Auto Remediator (GSSAR)☆46Updated 3 months ago
- GitHub Advanced Security Pull Request Security Team required review GitHub App☆36Updated 3 weeks ago
- Put the power of CodeQL in your pocket, take it with you to any CI 🚀☆12Updated 2 years ago
- Integrate CodeQL into CI/CD pipelines, using the CodeQL CLI Bundle for Automated Code Scanning☆23Updated 4 months ago
- A comprehensive, systematic and actionable way to understand attacker behaviors and techniques with respect to the software supply chain☆96Updated 9 months ago
- Collection of python helper API's for interacting with LGTM.com in ways the official API doesn't support.☆24Updated 3 years ago
- GitHub Advanced Security Policy as Code☆91Updated last month
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams☆106Updated 9 months ago
- A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling,…☆138Updated last year
- Manager of third-party sources of Semgrep rules 🗂☆90Updated last year
- My custom semgrep rules☆23Updated 5 years ago
- GitHub Advance Security Compliance Action☆134Updated 2 years ago