Alternatives and similar repositories for shiftleft-scan-vscode:

Users that are interested in shiftleft-scan-vscode are comparing it to the libraries listed below

• synopsys-sig / tslint-angular-security
  TSLint rules for Angular
  ☆18Updated 6 years ago
• GitHubSecurityLab / gh-mrva
  Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)
  ☆59Updated 2 weeks ago
• cxai / Checkmarx-PowerTools
  A collection of various scripts and automations to simplify Checkmarx SAST and IAST setup and use
  ☆14Updated 6 years ago
• spaceraccoon / npm-scan
  An extensible, heuristic-based vulnerability scanning tool for installed npm packages
  ☆50Updated 3 years ago
• olivo / redos-detector
  A tool for detecting regular expression denial-of-service vulnerabilities in Android apps.
  ☆33Updated 8 years ago
• ajinabraham / libsast
  Generic SAST Library
  ☆130Updated 4 months ago
• advanced-security / custom-codeql-bundle
  An example repository that demonstrates how the build custom CodeQL bundles that include query customizations through the `Customizations…
  ☆25Updated 2 years ago
• JLLeitschuh / lgtm_hack_scripts
  Collection of python helper API's for interacting with LGTM.com in ways the official API doesn't support.
  ☆23Updated 2 years ago
• joernio / workshops
  Joern Workshops
  ☆25Updated 2 months ago
• brompwnie / cve-2020-5260
  A HTTP PoC Endpoint for cve-2020-5260 which can be deployed to Heroku
  ☆37Updated 4 years ago
• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆142Updated last year
• spoofzu / jvmxray
  Externalize Java application access to protected resources as log messages.
  ☆41Updated 10 months ago
• ttarvis / glasgo
  A Security Scanner for Go
  ☆26Updated 6 years ago
• GitHubSecurityLab / gh-qldb
  CodeQL database manager
  ☆48Updated 2 weeks ago
• microsoft / codeql-container
  Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.
  ☆115Updated last year
• JacksonGL / NPM-Vuln-PoC
  Vulnerabilities discovered in npm packages [Berkeley PL & Security Research]
  ☆44Updated 9 months ago
• gagliardetto / lgtm-cli
  *Unofficial* lgtm.com CLI — Use at your own risk. Also don't add more than 3K projects to "My projects" list.
  ☆13Updated 3 years ago
• bgeesaman / subpath-exploit
  Writeup of CVE-2017-1002101 with sample "exploit"/escape
  ☆35Updated 7 years ago
• federicodotta / semgrep-rules
  A collection of my Semgrep rules
  ☆48Updated last year
• andresriancho / jwt-fuzzer
  JWT fuzzer
  ☆105Updated 6 years ago
• microsoft / sarif-vscode-extension
  SARIF Microsoft Visual Studio Code extension
  ☆113Updated last week
• OWASP / cwe-tool
  A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.
  ☆56Updated 6 months ago
• alexivkin / kubepwn
  Kubernetes Pwnage for all
  ☆56Updated 4 years ago
• strikergoutham / Anti-Takeover
  Anti-Takeover is a sub domain monitoring tool for (blue/purple) team / internal security team which uses cloud flare. Currently Anti-Take…
  ☆12Updated 4 years ago
• Contrast-Security-OSS / vulnerable-spring-boot-application
  ☆14Updated 11 months ago
• jackj07 / Response-Pattern-Matcher
  Adds extensibility to Burp by using a list of payloads to pattern match on HTTP responses highlighting interesting and potentially vulner…
  ☆15Updated last year
• IQTLabs / pypi-scan
  Scan pypi for typosquatting
  ☆38Updated 2 years ago
• wspr-ncsu / mininode
  Mininode is a CLI tool to reduce the attack surface of the Node.js applications by using static analysis.
  ☆21Updated last year
• xfhg / intercept
  INTERCEPT / Policy as Code Auditing & Compliance
  ☆84Updated 2 months ago
• nccgroup / SFPolDevChk
  Salesforce Policy Deviation Checker
  ☆30Updated 4 years ago