Alternatives and similar repositories for bulk-security-pr-generator:

Users that are interested in bulk-security-pr-generator are comparing it to the libraries listed below

• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆141Updated 11 months ago
• semgrep / semgrep-docs
  Documentation of Semgrep: a fast, open-source, static analysis tool.
  ☆39Updated this week
• iosifache / semgrep-rules-manager
  Manager of third-party sources of Semgrep rules 🗂
  ☆78Updated 7 months ago
• Checkmarx / dustilock
  DustiLock is a tool to find which of your dependencies is susceptible to a Dependency Confusion attack.
  ☆35Updated 3 years ago
• spoofzu / jvmxray
  Externalize Java application access to protected resources as log messages.
  ☆40Updated 9 months ago
• JacksonGL / NPM-Vuln-PoC
  Vulnerabilities discovered in npm packages [Berkeley PL & Security Research]
  ☆44Updated 7 months ago
• ossf / security-reviews
  A community collection of security reviews of open source software components.
  ☆93Updated 11 months ago
• microsoft / codeql-container
  Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.
  ☆114Updated last year
• mllamazares / vulncov
  🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.
  ☆38Updated 2 months ago
• elttam / semgrep-rules
  ☆180Updated 3 months ago
• Yelp / fuzz-lightyear
  A pytest-inspired, DAST framework, capable of identifying vulnerabilities in a distributed, micro-service ecosystem through chaos enginee…
  ☆218Updated 9 months ago
• nikitastupin / pwnhub
  How GitHub Actions workflows can be hacked
  ☆119Updated 5 months ago
• andresriancho / mongo-objectid-predict
  Predict Mongo ObjectIds
  ☆127Updated 6 years ago
• gagliardetto / lgtm-cli
  *Unofficial* lgtm.com CLI — Use at your own risk. Also don't add more than 3K projects to "My projects" list.
  ☆13Updated 3 years ago
• amalmurali47 / onaws
  Fetch the details of assets hosted on AWS.
  ☆86Updated last year
• ajinabraham / libsast
  Generic SAST Library
  ☆127Updated 3 months ago
• GitHubSecurityLab / gh-mrva
  Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)
  ☆56Updated 10 months ago
• pownjs / git
  Assorted tools for security-related task for git repositories
  ☆59Updated 2 years ago
• fabric8-analytics / cvedb
  CVE database
  ☆22Updated 4 years ago
• EqualExperts / secure-delivery-playbook
  Equal Experts Secure Delivery Playbook
  ☆25Updated 2 years ago
• OWASP / cwe-tool
  A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.
  ☆55Updated 5 months ago
• semgrep-old / rules-owasp-asvs
  Semgrep rules corresponding to the OWASP ASVS standard
  ☆27Updated 4 years ago
• kaakaww / javaspringvulny
  javaspringvulny - a Spring Boot web application built wrong on purpose
  ☆19Updated last week
• TinderSec / gh-workflow-auditor
  Script to audit GitHub Action Workflow files for potential vulnerabilities.
  ☆153Updated 5 months ago
• claudijd / rotten_apple
  A tool for testing continuous integration (CI) or continuous delivery (CD) system security
  ☆23Updated 11 years ago
• Frichetten / aws_stealth_perm_enum
  Research on the enumeration of IAM permissions without logging to CloudTrail
  ☆60Updated 3 years ago
• SasanLabs / owasp-zap-jwt-addon
  OWASP ZAP addon for finding vulnerabilities in JWT Implementations
  ☆30Updated 6 months ago
• cve-search / git-vuln-finder
  Finding potential software vulnerabilities from git commit messages
  ☆408Updated last year
• google / oss-fuzz-vulns
  OSS-Fuzz vulnerabilities for OSV.
  ☆147Updated this week
• JLLeitschuh / lgtm_hack_scripts
  Collection of python helper API's for interacting with LGTM.com in ways the official API doesn't support.
  ☆23Updated 2 years ago