ShiftLeftSecurity / shiftleft-scan-vscode
ShiftLeft Scan is a free and open-source commercial-grade security tool for modern DevOps teams.
☆12Updated last year
Related projects: ⓘ
- Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)☆49Updated 5 months ago
- A collection of various scripts and automations to simplify Checkmarx SAST and IAST setup and use☆14Updated 6 years ago
- TSLint rules for Angular☆18Updated 5 years ago
- Collection of python helper API's for interacting with LGTM.com in ways the official API doesn't support.☆23Updated 2 years ago
- A HTTP PoC Endpoint for cve-2020-5260 which can be deployed to Heroku☆37Updated 4 years ago
- An example repository that demonstrates how the build custom CodeQL bundles that include query customizations through the `Customizations…☆25Updated 2 years ago
- CodeQL database manager☆44Updated 7 months ago
- INTERCEPT / Policy as Code Auditing & Compliance☆82Updated this week
- Externalize Java application access to protected resources as log messages.☆41Updated 4 months ago
- Vulnerability Scanner for Detecting Publicly Disclosed Vulnerabilities in Application Dependencies☆23Updated 5 years ago
- Some helpful Helm Charts for pentesters☆38Updated 5 years ago
- Vulnerability consolidation and management tool, enhances scan results by merging different findings of the same weakness across multiple…☆23Updated last year
- Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.☆102Updated 9 months ago
- ☆13Updated 5 months ago
- This repo has been migrated to https://github.com/github/security-lab/tree/master/CodeQL_Queries☆25Updated 4 years ago
- ☆16Updated 5 years ago
- Docker container for running OWASP WebGoat.NET application☆11Updated 6 years ago
- Writeup of CVE-2017-1002101 with sample "exploit"/escape☆35Updated 6 years ago
- Intentionally vulnerable Go web app.☆42Updated 9 months ago
- OWASP Foundation Web Respository☆13Updated 2 months ago
- CodeQL model generation for Go.☆17Updated 3 years ago
- Deprecated: Please visit https://github.com/github/codeql instead.☆81Updated 2 years ago
- An extensible, heuristic-based vulnerability scanning tool for installed npm packages☆49Updated 3 years ago
- Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container☆84Updated 5 years ago
- My CodeQL queries collection☆93Updated last year
- ☆22Updated 7 months ago
- Repository to showcase various configuration recipes with various technologies☆35Updated last year
- insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.☆49Updated 2 years ago
- Action to retrofit a CodeQL bundle with additional queries, libraries, and customizations☆19Updated 4 months ago
- A tool for detecting regular expression denial-of-service vulnerabilities in Android apps.☆33Updated 8 years ago