ajinabraham / libsastLinks
Generic SAST Library
☆131Updated last week
Alternatives and similar repositories for libsast
Users that are interested in libsast are comparing it to the libraries listed below
Sorting:
- The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…☆145Updated last year
- Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)☆59Updated 2 months ago
- A Chrome extension static analysis tool to help aide in security reviews.☆156Updated last year
- Static analysis tool for Android/iOS apps focusing on security issues outside the source code☆132Updated last year
- Deprecated: Please visit https://github.com/github/codeql instead.☆81Updated 3 years ago
- Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.☆119Updated last year
- Post Processor for Facebook Static Analysis Tools.☆141Updated last week
- A pytest-inspired, DAST framework, capable of identifying vulnerabilities in a distributed, micro-service ecosystem through chaos enginee…☆222Updated last year
- Mobile Security testing Framework☆41Updated 6 years ago
- A tool for detecting regular expression denial-of-service vulnerabilities in Android apps.☆34Updated 9 years ago
- Vulnerabilities discovered in npm packages [Berkeley PL & Security Research]☆42Updated last year
- HTML5 WebSocket message fuzzer☆146Updated 6 years ago
- [Deprecated] GitHub's Field Team's CodeQL Custom Queries, Suites, and Configurations. See GitHubSecurityLab/CodeQL-Community-Packs instea…☆83Updated last year
- GitHub Satellite 2020 workshops on finding security vulnerabilities with CodeQL for Java/JavaScript.☆210Updated 8 months ago
- An extended Node.js runtime with additional security mechanisms built-in. Protects your Node.js applications from injection attacks such …☆31Updated 4 years ago
- PIOF - PHP Instrumentation Open Framework - A dynamic and modular instrumentation framework for PHP language.☆9Updated 6 years ago
- Intentionally vulnerable Go web app.☆43Updated last month
- Automate security tests using Burp Suite.☆227Updated last year
- HTTPWookiee is an HTTP server and proxy stress tool (respect of RFC, HTTP Smuggling issues, etc). If you run an HTTP server project conta…☆50Updated 7 years ago
- Grammar-based HTTP/1 fuzzer with mutation ability☆251Updated 7 months ago
- Files for appsecwiki.com☆117Updated 4 years ago
- Security Crawl Maze is a comprehensive testbed for web security crawlers. It contains pages representing many ways in which one can link …☆162Updated last year
- Fuzzing script for redirect URL validator☆52Updated 5 years ago
- CodeQL database manager☆48Updated 2 months ago
- A collection of my Semgrep rules☆49Updated last year
- Evaluation Framework for Dependency Analysis (EFDA)☆43Updated 3 years ago
- a project repository for a paper☆20Updated last year
- ☆196Updated 7 months ago
- My CodeQL queries collection☆97Updated last year
- JWT fuzzer☆107Updated 6 years ago