Alternatives and similar repositories for shiftleft-scan-vscode:

Users that are interested in shiftleft-scan-vscode are comparing it to the libraries listed below

• GitHubSecurityLab / gh-mrva
  Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)
  ☆56Updated 10 months ago
• brompwnie / cve-2020-5260
  A HTTP PoC Endpoint for cve-2020-5260 which can be deployed to Heroku
  ☆37Updated 4 years ago
• JLLeitschuh / lgtm_hack_scripts
  Collection of python helper API's for interacting with LGTM.com in ways the official API doesn't support.
  ☆23Updated 2 years ago
• GitHubSecurityLab / gh-qldb
  CodeQL database manager
  ☆48Updated last year
• gagliardetto / codebox
  Generate CodeQL taint-tracking models for Go (along with tests) in a graphical UI
  ☆20Updated last year
• gagliardetto / lgtm-cli
  *Unofficial* lgtm.com CLI — Use at your own risk. Also don't add more than 3K projects to "My projects" list.
  ☆13Updated 3 years ago
• federicodotta / semgrep-rules
  A collection of my Semgrep rules
  ☆48Updated last year
• jackj07 / Response-Pattern-Matcher
  Adds extensibility to Burp by using a list of payloads to pattern match on HTTP responses highlighting interesting and potentially vulner…
  ☆15Updated last year
• xfhg / intercept
  INTERCEPT / Policy as Code Auditing & Compliance
  ☆83Updated 3 weeks ago
• security-dockerfiles / burp
  BurpSuite dockerized
  ☆11Updated 6 years ago
• ajinabraham / libsast
  Generic SAST Library
  ☆127Updated 3 months ago
• iosifache / semgrep-rules-manager
  Manager of third-party sources of Semgrep rules 🗂
  ☆78Updated 7 months ago
• Contrast-Security-OSS / go-test-bench
  Intentionally vulnerable Go web app.
  ☆43Updated 3 weeks ago
• advanced-security / custom-codeql-bundle
  An example repository that demonstrates how the build custom CodeQL bundles that include query customizations through the `Customizations…
  ☆25Updated 2 years ago
• Contrast-Security-OSS / vulnerable-spring-boot-application
  ☆13Updated 10 months ago
• mpgn / Slanger-RCE
  RCE in Slanger using deserialization of Ruby objects
  ☆11Updated 5 years ago
• strikergoutham / Anti-Takeover
  Anti-Takeover is a sub domain monitoring tool for (blue/purple) team / internal security team which uses cloud flare. Currently Anti-Take…
  ☆12Updated 4 years ago
• advanced-security / codeql-bundle-action
  Action to retrofit a CodeQL bundle with additional queries, libraries, and customizations
  ☆25Updated 9 months ago
• semgrep / semgrep-docs
  Documentation of Semgrep: a fast, open-source, static analysis tool.
  ☆39Updated this week
• cldrn / codeql-queries
  My CodeQL queries collection
  ☆96Updated last year
• Metnew / write-ups
  ☆34Updated 2 years ago
• righettod / log-requests-to-sqlite
  BURP extension to record every HTTP request send via BURP and create an audit trail log of an assessment.
  ☆63Updated 2 weeks ago
• AvalZ / RevOK
  An HTTP Response fuzzer to find Vulnerabilities in Security Scanners
  ☆26Updated 8 months ago
• asmyczek / popcorn
  Popcorn - the JSON fuzzer
  ☆22Updated 10 years ago
• olivo / redos-detector
  A tool for detecting regular expression denial-of-service vulnerabilities in Android apps.
  ☆33Updated 8 years ago
• spaceraccoon / npm-scan
  An extensible, heuristic-based vulnerability scanning tool for installed npm packages
  ☆50Updated 3 years ago
• microsoft / sarif-vscode-extension
  SARIF Microsoft Visual Studio Code extension
  ☆113Updated 4 months ago
• abhisek / supply-chain-security-gateway
  Reference architecture and proof of concept implementation for supply chain security gateway
  ☆23Updated last year
• Invizory / taintflow
  TaintFlow, a framework for JavaScript dynamic information flow analysis.
  ☆17Updated 2 years ago
• NotSoSecure / cloud-sec-wiki
  Jekyll Files for cloudsecwiki.com
  ☆51Updated 3 years ago