Alternatives and similar repositories for shiftleft-scan-vscode:

Users that are interested in shiftleft-scan-vscode are comparing it to the libraries listed below

• GitHubSecurityLab / gh-mrva
  Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)
  ☆58Updated last week
• spaceraccoon / npm-scan
  An extensible, heuristic-based vulnerability scanning tool for installed npm packages
  ☆50Updated 3 years ago
• synopsys-sig / tslint-angular-security
  TSLint rules for Angular
  ☆18Updated 6 years ago
• Contrast-Security-OSS / go-test-bench
  Intentionally vulnerable Go web app.
  ☆43Updated 2 months ago
• bgeesaman / subpath-exploit
  Writeup of CVE-2017-1002101 with sample "exploit"/escape
  ☆35Updated 7 years ago
• ttarvis / glasgo
  A Security Scanner for Go
  ☆26Updated 6 years ago
• JLLeitschuh / lgtm_hack_scripts
  Collection of python helper API's for interacting with LGTM.com in ways the official API doesn't support.
  ☆24Updated 3 years ago
• xfhg / intercept
  INTERCEPT / Policy as Code Auditing & Compliance
  ☆84Updated 3 months ago
• ajinabraham / libsast
  Generic SAST Library
  ☆131Updated 5 months ago
• spoofzu / jvmxray
  Externalize Java application access to protected resources as log messages.
  ☆41Updated this week
• appsecco / owasp-webgoat-dot-net-docker
  Docker container for running OWASP WebGoat.NET application
  ☆11Updated 6 years ago
• Contrast-Security-OSS / vulnerable-spring-boot-application
  ☆14Updated last year
• vmnguyen / semgrep-rules
  My custom semgrep rules
  ☆21Updated 4 years ago
• cxai / Checkmarx-PowerTools
  A collection of various scripts and automations to simplify Checkmarx SAST and IAST setup and use
  ☆14Updated 6 years ago
• github / codeql-dubbo-workshop
  ☆60Updated 2 years ago
• microsoft / sarif-vscode-extension
  SARIF Microsoft Visual Studio Code extension
  ☆114Updated last week
• ropnop / pentest_charts
  Some helpful Helm Charts for pentesters
  ☆39Updated 6 years ago
• cweb / unicode-hax
  A library to assist in security-testing Unicode enabled applications during fuzzing, XSS, SQLi, etc.
  ☆42Updated 7 years ago
• microsoft / codeql-container
  Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.
  ☆118Updated last year
• intruder-io / param-miner
  Fork of https://github.com/PortSwigger/param-miner for header smuggling research
  ☆12Updated 3 years ago
• gagliardetto / lgtm-cli
  *Unofficial* lgtm.com CLI — Use at your own risk. Also don't add more than 3K projects to "My projects" list.
  ☆13Updated 3 years ago
• andresriancho / jwt-fuzzer
  JWT fuzzer
  ☆106Updated 6 years ago
• federicodotta / semgrep-rules
  A collection of my Semgrep rules
  ☆49Updated last year
• OWASP / cwe-tool
  A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.
  ☆56Updated 7 months ago
• GitHubSecurityLab / gh-qldb
  CodeQL database manager
  ☆48Updated last week
• advanced-security / custom-codeql-bundle
  An example repository that demonstrates how the build custom CodeQL bundles that include query customizations through the `Customizations…
  ☆25Updated 2 years ago
• OWASP / Cloud-Native-Application-Security-Top-10
  ☆20Updated 6 years ago
• secdec / astam-correlator
  Vulnerability consolidation and management tool, enhances scan results by merging different findings of the same weakness across multiple…
  ☆24Updated 2 years ago
• joshbressers / cve-analysis
  Tools for conducting analysis of CVE data in Elasticsearch
  ☆74Updated 2 weeks ago
• tabbysable / POC-2020-8559
  Proof of Concept exploit for Kubernetes CVE-2020-8559
  ☆20Updated 4 years ago