Alternatives and similar repositories for shiftleft-scan-vscode

Users that are interested in shiftleft-scan-vscode are comparing it to the libraries listed below

• cxai / Checkmarx-PowerTools
  A collection of various scripts and automations to simplify Checkmarx SAST and IAST setup and use
  ☆14Updated 6 years ago
• ajinabraham / libsast
  Generic SAST Library
  ☆132Updated last month
• xfhg / intercept
  INTERCEPT / Policy as Code Auditing & Compliance
  ☆84Updated last month
• spaceraccoon / npm-scan
  An extensible, heuristic-based vulnerability scanning tool for installed npm packages
  ☆50Updated 3 years ago
• GitHubSecurityLab / gh-mrva
  Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)
  ☆59Updated 3 months ago
• microsoft / sarif-vscode-extension
  SARIF Microsoft Visual Studio Code extension
  ☆118Updated last month
• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆148Updated last year
• JLLeitschuh / lgtm_hack_scripts
  Collection of python helper API's for interacting with LGTM.com in ways the official API doesn't support.
  ☆24Updated 3 years ago
• Contrast-Security-OSS / vulnerable-spring-boot-application
  ☆14Updated last year
• OWASP / Cloud-Native-Application-Security-Top-10
  ☆20Updated 6 years ago
• spoofzu / jvmxray
  Externalize Java application access to protected resources as log messages.
  ☆42Updated 2 weeks ago
• victims / maven-security-versions
  Identify vulnerable libraries in Maven dependencies
  ☆46Updated 2 years ago
• synopsys-sig / tslint-angular-security
  TSLint rules for Angular
  ☆18Updated 6 years ago
• srcclr / efda
  Evaluation Framework for Dependency Analysis (EFDA)
  ☆43Updated 3 years ago
• cweb / unicode-hax
  A library to assist in security-testing Unicode enabled applications during fuzzing, XSS, SQLi, etc.
  ☆42Updated 8 years ago
• bgeesaman / subpath-exploit
  Writeup of CVE-2017-1002101 with sample "exploit"/escape
  ☆35Updated 7 years ago
• thought-machine / dracon
  Security scanning & static analysis tool
  ☆94Updated 9 months ago
• security-dockerfiles / burp
  BurpSuite dockerized
  ☆11Updated 7 years ago
• microsoft / codeql-container
  Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.
  ☆119Updated last year
• advanced-security / codeql-bundle-action
  Action to retrofit a CodeQL bundle with additional queries, libraries, and customizations
  ☆26Updated last year
• appsecco / defcon-26-workshop-attacking-and-auditing-docker-containers
  DEF CON 26 Workshop - Attacking & Auditing Docker Containers Using Open Source
  ☆108Updated 5 years ago
• jtmelton / semgrep-idea-plugin
  ☆16Updated last year
• joshbressers / cve-analysis
  Tools for conducting analysis of CVE data in Elasticsearch
  ☆74Updated 2 months ago
• knqyf263 / CVE-2020-10749
  CVE-2020-10749 PoC (Kubernetes MitM attacks via IPv6 rogue router advertisements)
  ☆25Updated 5 years ago
• OWASP / cwe-tool
  A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.
  ☆59Updated last month
• find-sec-bugs / find-sec-bugs-demos
  Repository to showcase various configuration recipes with various technologies
  ☆36Updated 2 years ago
• apiiro / combobulator
  Dependency Combobulator
  ☆93Updated last year
• Checkmarx / chainjacking
  Find which of your direct GitHub dependencies is susceptible to RepoJacking attacks
  ☆58Updated 3 years ago
• olivo / redos-detector
  A tool for detecting regular expression denial-of-service vulnerabilities in Android apps.
  ☆36Updated 9 years ago
• andresriancho / jwt-fuzzer
  JWT fuzzer
  ☆107Updated 6 years ago