ajinabraham / libsastLinks
Generic SAST Library
☆131Updated 6 months ago
Alternatives and similar repositories for libsast
Users that are interested in libsast are comparing it to the libraries listed below
Sorting:
- Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)☆58Updated last month
- The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…☆144Updated last year
- Intentionally vulnerable Go web app.☆43Updated 2 weeks ago
- OpenAPI 2.0 (Swagger) fuzzer written in python. Basically TnT for your API.☆111Updated 2 years ago
- A pytest-inspired, DAST framework, capable of identifying vulnerabilities in a distributed, micro-service ecosystem through chaos enginee…☆221Updated last year
- GitHub Satellite 2020 workshops on finding security vulnerabilities with CodeQL for Java/JavaScript.☆210Updated 8 months ago
- An extended Node.js runtime with additional security mechanisms built-in. Protects your Node.js applications from injection attacks such …☆31Updated 4 years ago
- A Chrome extension static analysis tool to help aide in security reviews.☆154Updated last year
- Evaluation Framework for Dependency Analysis (EFDA)☆43Updated 3 years ago
- Static analysis tool for Android/iOS apps focusing on security issues outside the source code☆132Updated last year
- Vulnerabilities discovered in npm packages [Berkeley PL & Security Research]☆42Updated 11 months ago
- Deprecated: Please visit https://github.com/github/codeql instead.☆81Updated 3 years ago
- Non-decompiling iOS/Android app vulnerability scanner (DC25 demo lab, CB17)☆63Updated 2 months ago
- A Node.js vulnerability finding tool.☆96Updated 4 years ago
- Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.☆118Updated last year
- Codyze is a static analyzer for Java, C, C++ based on code property graphs☆87Updated 4 months ago
- Mobile Security testing Framework☆41Updated 6 years ago
- eslintrc.js config files for running static analysis on JavaScript to identify security issues.☆62Updated 4 years ago
- Grammar-based HTTP/2 fuzzer with mutation ability☆45Updated 2 years ago
- HTML5 WebSocket message fuzzer☆146Updated 6 years ago
- Generate CodeQL taint-tracking models for Go (along with tests) in a graphical UI☆20Updated 2 years ago
- CapFuzz - capture, fuzz & intercept web traffic.☆64Updated 5 years ago
- ☆194Updated 7 months ago
- CodeQL database manager☆48Updated last month
- A tool for detecting regular expression denial-of-service vulnerabilities in Android apps.☆34Updated 8 years ago
- Collection of python helper API's for interacting with LGTM.com in ways the official API doesn't support.☆24Updated 3 years ago
- Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.1, purl, and vers…☆119Updated last week
- Grammar-based HTTP/1 fuzzer with mutation ability☆250Updated 7 months ago
- CodeQL workshops for GitHub Universe☆96Updated 2 years ago
- HTTPWookiee is an HTTP server and proxy stress tool (respect of RFC, HTTP Smuggling issues, etc). If you run an HTTP server project conta…☆50Updated 7 years ago