Alternatives and similar repositories for Flow

Users that are interested in Flow are comparing it to the libraries listed below

• latiotech / LAST
  Use AI to Scan Your Code from the Command Line for security and code smells. Bring your own keys. Supports OpenAI and Gemini
  ☆174Updated 3 months ago
• latiotech / insecure-kubernetes-deployments
  A full insecure kubernetes application for testing security tools
  ☆89Updated 3 months ago
• Addepar / RedFlag
  RedFlag uses AI to identify high-risk code changes. Run it in batch mode for release candidate testing or in CI pipelines to flag PRs and…
  ☆152Updated 8 months ago
• DataDog / undocumented-aws-api-hunter
  A tool to uncover undocumented APIs from the AWS Console.
  ☆110Updated 3 months ago
• StevenSmiley / aws-mine
  AWS honey token manager
  ☆87Updated last year
• elementsinteractive / twyn
  Security tool against dependency typosquatting attacks
  ☆53Updated this week
• Resourcely-Inc / cloud-guardrails
  Open-source best practices for protecting a secure, sensible cloud platform
  ☆126Updated 9 months ago
• gabrielsoltz / metahub
  MetaHub is an automated contextual security findings enrichment and impact evaluation tool for vulnerability management.
  ☆174Updated this week
• ReversecLabs / cloud-security-vm
  Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments
  ☆143Updated 7 months ago
• referefref / gitdoorcheck
  Static code analyser for backdoors and malicious code in git repos using OpenAI compatible LLM APIs
  ☆73Updated last year
• adeptex / whispers
  Identify hardcoded secrets in static structured text (version 2)
  ☆91Updated 6 months ago
• klarna-incubator / gram
  Gram is Klarna's own threat model diagramming tool
  ☆322Updated last week
• boostsecurityio / poutine
  boostsecurityio/poutine
  ☆308Updated last week
• dark-warlord14 / CVENotifier
  Customized CVE FEED Notifier
  ☆114Updated 3 months ago
• ManuelBerrueta / FlowAnalyzer
  FlowAnalyzer is a tool to help in testing and analyzing OAuth 2.0 Flows, including OpenID Connect (OIDC).
  ☆179Updated last year
• SecurityRunners / CloudCommotion
  Cloud Commotion intends to cause chaos to simulate security incidents
  ☆143Updated last year
• shivamsaraswat / SeCoRA
  Secure Code Review AI Agent (SeCoRA) - AI SAST
  ☆48Updated 6 months ago
• kudelskisecurity / youshallnotpass
  YouShallNotPass brings an added level of execution security to mission-critical CI/CD Systems.
  ☆36Updated last year
• cado-security / cloudgrep
  cloudgrep is grep for cloud storage
  ☆326Updated 5 months ago
• anirudhbiyani / findmytakeover
  find dangling domains in a multi cloud environment
  ☆142Updated last month
• domain-protect / domain-protect-gcp
  Protect against subdomain takeover
  ☆92Updated 2 weeks ago
• opengrep / opengrep-rules
  ☆79Updated 6 months ago
• orcasecurity-research / kte
  Test & Compare different Kubernetes security offerings on EKS, GKE and AKS
  ☆40Updated 11 months ago
• Santiago-Labs / go-ocsf
  ☆70Updated last week
• saw-your-packet / CloudShovel
  A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…
  ☆109Updated 8 months ago
• boringtools / git-alerts
  Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive files
  ☆220Updated last month
• semgr8ns / semgr8s
  Semgrep-based Policy Controller for Kubernetes
  ☆47Updated 4 months ago
• jstawinski / GitHub-Actions-Attack-Diagram
  ☆189Updated 3 months ago
• cloud-copilot / iam-lens
  TODO: Funny pun about visibility
  ☆222Updated this week
• offensive-actions / terraform-provider-statefile-rce
  This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.
  ☆55Updated 6 months ago