ajinabraham / libsast
Generic SAST Library
☆126Updated 2 months ago
Alternatives and similar repositories for libsast:
Users that are interested in libsast are comparing it to the libraries listed below
- The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…☆141Updated 10 months ago
- A Chrome extension static analysis tool to help aide in security reviews.☆150Updated last year
- Vulnerabilities discovered in npm packages [Berkeley PL & Security Research]☆43Updated 6 months ago
- OpenAPI 2.0 (Swagger) fuzzer written in python. Basically TnT for your API.☆110Updated 2 years ago
- An extended Node.js runtime with additional security mechanisms built-in. Protects your Node.js applications from injection attacks such …☆31Updated 3 years ago
- Evaluation Framework for Dependency Analysis (EFDA)☆43Updated 2 years ago
- Deprecated: Please visit https://github.com/github/codeql instead.☆81Updated 2 years ago
- A tool for detecting regular expression denial-of-service vulnerabilities in Android apps.☆33Updated 8 years ago
- A Node.js vulnerability finding tool.☆95Updated 4 years ago
- A pytest-inspired, DAST framework, capable of identifying vulnerabilities in a distributed, micro-service ecosystem through chaos enginee…☆216Updated 8 months ago
- A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.☆55Updated 4 months ago
- Intentionally vulnerable Go web app.☆43Updated last year
- Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.1, purl, and vers…☆103Updated 3 weeks ago
- Fuzzing Browsers☆310Updated 2 years ago
- CapFuzz - capture, fuzz & intercept web traffic.☆64Updated 5 years ago
- A curated list of awesome browser security learning material.☆137Updated 2 years ago
- PyPI malware packages☆58Updated 6 years ago
- Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)☆53Updated 9 months ago
- Collection of python helper API's for interacting with LGTM.com in ways the official API doesn't support.☆23Updated 2 years ago
- Static analysis tool for Android/iOS apps focusing on security issues outside the source code☆130Updated last year
- Easy to use Frida python binding script☆115Updated 6 years ago
- Files for appsecwiki.com☆115Updated 4 years ago
- GitHub Satellite 2020 workshops on finding security vulnerabilities with CodeQL for Java/JavaScript.☆209Updated 3 months ago
- Fuzzing script for redirect URL validator☆48Updated 4 years ago
- ☆176Updated 2 months ago
- A regular expression fuzzer.☆43Updated 6 years ago
- DEF CON 26 Workshop - Attacking & Auditing Docker Containers Using Open Source☆106Updated 5 years ago
- Security Crawl Maze is a comprehensive testbed for web security crawlers. It contains pages representing many ways in which one can link …☆159Updated 11 months ago
- [Deprecated] GitHub's Field Team's CodeQL Custom Queries, Suites, and Configurations. See GitHubSecurityLab/CodeQL-Community-Packs instea…☆81Updated 8 months ago
- Mobile Security testing Framework☆40Updated 6 years ago