My personal collection of resources (mostly tools and training materials) for source code security audits.
☆109Aug 20, 2024Updated last year
Alternatives and similar repositories for security-code-review
Users that are interested in security-code-review are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Regex patterns for manual application source code review☆33Dec 14, 2020Updated 5 years ago
- ☆196Feb 26, 2023Updated 3 years ago
- A starter secure code review checklist☆185Nov 26, 2018Updated 7 years ago
- Training and certifications related to secure software development☆10Feb 9, 2026Updated 4 months ago
- Megagrep helps beginning a code review by searching for keywords in the code using "grep". It does not search for vulnerabilities directl…☆14Aug 8, 2022Updated 3 years ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- Automatic tool using for crawling code to find low-hang fruit vulnerabilities - Based on OWASP Secure Code Review Guide☆21Aug 31, 2020Updated 5 years ago
- Find unicode codepoints to use in normalisation and transformation attacks.☆11Mar 15, 2021Updated 5 years ago
- AssetViz simplifies the visualization of subdomains from input files, presenting them as a coherent mind map. Ideal for penetration test…☆38Feb 15, 2026Updated 3 months ago
- Extract GraphQL operations from javascript☆24Mar 18, 2026Updated 2 months ago
- This tools used for Automating finding of subdomain, and checking for alive subdomain, and gathering js files from all the subdomain and …☆22Jun 28, 2024Updated last year
- Collection of all the resources published by Payatu.☆11May 14, 2026Updated 3 weeks ago
- SecureEye is an AI tool for secure code review. It assesses code for vulnerabilities, and common attack vectors☆14May 21, 2024Updated 2 years ago
- ☆40May 1, 2026Updated last month
- generates unique subdomain names and runs httpx on them☆17Apr 8, 2024Updated 2 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- ☆12Feb 20, 2025Updated last year
- ☆12Jun 5, 2024Updated 2 years ago
- A collection of js analysis tools & scripts.☆19May 4, 2026Updated last month
- Query various sources for CVE proof-of-concepts☆51Jun 1, 2023Updated 3 years ago
- grep rough audit - source code auditing tool☆1,686Dec 19, 2025Updated 5 months ago
- A Productivity-Boosting Burp Suite extension written in Kotlin that enables persistent sticky session handling in web application testing…☆14Oct 8, 2025Updated 8 months ago
- My notes from courses,books ..etc☆49Nov 26, 2025Updated 6 months ago
- A simple index for HackTheBox machine along with tags☆16Mar 26, 2026Updated 2 months ago
- A list of threat sinks used in the manual security source code review for application security☆76May 9, 2023Updated 3 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- History of commits related to the xz backdoor Discovered On March 29, 2024: CVE-2024-3094.☆10Apr 1, 2024Updated 2 years ago
- Report and finding templates used by the Serpico reporting tool☆16Sep 26, 2018Updated 7 years ago
- Find endpoints in archived versions of robots.txt☆14Nov 21, 2019Updated 6 years ago
- Real Cyber Security Interview Questions for Various Job Roles☆60May 21, 2022Updated 4 years ago
- Welcome to RFS notes to CRTP - Certified Red Team Professional by Altered Security.☆23Aug 20, 2024Updated last year
- Every GitHub repo mentioning OSCP — hunted, cloned, read by AI, judged by a human. 399 clean repos.☆78Mar 5, 2026Updated 3 months ago
- CSPT is an open-source Burp Suite extension to find and exploit Client-Side Path Traversal.☆167Jul 2, 2024Updated last year
- OWASP ASVS Security Evaluation Templates with Nuclei☆43Dec 2, 2025Updated 6 months ago
- A penetration test reporting tool☆10Mar 8, 2023Updated 3 years ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- HP Data Protector Arbitrary Remote Command Execution☆11Aug 12, 2018Updated 7 years ago
- Repository with some necessary information for you to create your PenTest consultancy☆103Jan 12, 2025Updated last year
- Source Code Review resources for Bug Bounty Hunters & Developers. This Repo is updated consistently.☆80Dec 30, 2021Updated 4 years ago
- Whitebox source code review cheatsheet (Based on AWAE syllabus)☆175Feb 16, 2022Updated 4 years ago
- A BurpSuite extension that allows you to use Chromium with PwnFox☆48Dec 23, 2025Updated 5 months ago
- ☆52Feb 12, 2024Updated 2 years ago
- OWASP Code Review Guide Web Repository☆150Jun 22, 2022Updated 3 years ago