Alternatives and similar repositories for Flow

Users that are interested in Flow are comparing it to the libraries listed below

• Addepar / RedFlag
  RedFlag uses AI to identify high-risk code changes. Run it in batch mode for release candidate testing or in CI pipelines to flag PRs and…
  ☆152Updated 9 months ago
• elementsinteractive / twyn
  Security tool against dependency typosquatting attacks
  ☆53Updated this week
• latiotech / LAST
  Use AI to Scan Your Code from the Command Line for security and code smells. Bring your own keys. Supports OpenAI and Gemini
  ☆174Updated 4 months ago
• shivamsaraswat / SeCoRA
  Secure Code Review AI Agent (SeCoRA) - AI SAST
  ☆49Updated 7 months ago
• StevenSmiley / aws-mine
  AWS honey token manager
  ☆87Updated last year
• DataDog / undocumented-aws-api-hunter
  A tool to uncover undocumented APIs from the AWS Console.
  ☆113Updated 4 months ago
• Santiago-Labs / go-ocsf
  ☆72Updated last month
• referefref / gitdoorcheck
  Static code analyser for backdoors and malicious code in git repos using OpenAI compatible LLM APIs
  ☆73Updated last year
• Resourcely-Inc / cloud-guardrails
  Open-source best practices for protecting a secure, sensible cloud platform
  ☆126Updated 10 months ago
• semgr8ns / semgr8s
  Semgrep-based Policy Controller for Kubernetes
  ☆47Updated 4 months ago
• latiotech / insecure-kubernetes-deployments
  A full insecure kubernetes application for testing security tools
  ☆89Updated 4 months ago
• ReversecLabs / cloud-security-vm
  Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments
  ☆143Updated 7 months ago
• kapilduraphe / mcp-watch
  A comprehensive security scanner for Model Context Protocol (MCP) servers that detects vulnerabilities and security issues in your MCP se…
  ☆85Updated this week
• RyanJarv / roles
  Unauthenticated enumeration of AWS IAM Roles.
  ☆25Updated 7 months ago
• offensive-actions / terraform-provider-statefile-rce
  This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.
  ☆55Updated 7 months ago
• gabrielsoltz / metahub
  MetaHub is an automated contextual security findings enrichment and impact evaluation tool for vulnerability management.
  ☆176Updated this week
• dark-warlord14 / CVENotifier
  Customized CVE FEED Notifier
  ☆114Updated 4 months ago
• kudelskisecurity / youshallnotpass
  YouShallNotPass brings an added level of execution security to mission-critical CI/CD Systems.
  ☆36Updated last year
• tenable / hidden-services-revealer
  ☆39Updated last year
• makalin / SecureMCP
  SecureMCP is a security auditing tool designed to detect vulnerabilities and misconfigurations in applications using the [Model Context P…
  ☆124Updated 2 months ago
• mllamazares / vulncov
  🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.
  ☆40Updated 8 months ago
• boringtools / git-alerts
  Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive files
  ☆222Updated 2 months ago
• opengrep / opengrep-rules
  ☆83Updated 7 months ago
• red-kite-solutions / stalker
  Stalker, the Extensible Attack Surface Management tool.
  ☆86Updated 3 weeks ago
• hashicorp-forge / semgrep-rules
  HashiCorp-relevant rules for the Semgrep code analysis tool
  ☆41Updated last year
• saw-your-packet / CloudShovel
  A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…
  ☆109Updated 9 months ago
• adeptex / whispers
  Identify hardcoded secrets in static structured text (version 2)
  ☆92Updated 6 months ago
• jstawinski / GitHub-Actions-Attack-Diagram
  ☆189Updated 4 months ago
• klarna-incubator / gram
  Gram is Klarna's own threat model diagramming tool
  ☆324Updated last month
• cloud-copilot / iam-simulate
  An IAM Simulator that outputs detailed explains of how a request was evaluated.
  ☆93Updated last week