elttam / semgrep-rulesLinks
☆202Updated 11 months ago
Alternatives and similar repositories for semgrep-rules
Users that are interested in semgrep-rules are comparing it to the libraries listed below
Sorting:
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams☆106Updated 8 months ago
- Find authentication (authn) and authorization (authz) security bugs in web application routes.☆280Updated last month
- Manager of third-party sources of Semgrep rules 🗂☆89Updated last year
- Grammar-based HTTP/1 fuzzer with mutation ability☆257Updated 11 months ago
- An extension to use Semgrep inside Burp Suite.☆89Updated 5 months ago
- Burp Suite Extension useful to verify OAUTHv2 and OpenID security☆174Updated last year
- Proof of concept code for Datadog Security Labs referenced exploits.☆443Updated 2 months ago
- A collection of my Semgrep rules☆50Updated 2 years ago
- A curated list of awesome browser security learning material.☆145Updated 2 years ago
- Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝☆138Updated 2 weeks ago
- A collection of Semgrep rules which followed security guidelines for .NET and Java.☆24Updated 4 years ago
- The Burp extension to check JWT (JSON Web Tokens) for using keys from known from public sources☆136Updated 5 years ago
- CSTC is a Burp Suite extension that allows request/response modification using a GUI analogous to CyberChef☆250Updated last week
- Companion labs to "An Exploration of JSON Interoperability Vulnerabilities"☆210Updated 2 years ago
- ☆182Updated 4 months ago
- PP-finder Help you find gadget for prototype pollution exploitation☆180Updated last year
- Black box fuzzer for web applications☆433Updated 3 months ago
- AuthMatrix is a Burp Suite extension that provides a simple way to test authorization in web applications and web services.☆43Updated 2 years ago
- Purposely vulnerable Java application to help lead secure coding workshops☆187Updated last year
- Awesome information for WebSockets security research☆276Updated 3 years ago
- A GraphQL enumeration and extraction tool☆133Updated 2 years ago
- Burp Suite extension that offers a toolkit for testing GraphQL endpoints.☆195Updated last year
- jws2pubkey tool☆40Updated 3 months ago
- ☆153Updated 2 years ago
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆163Updated last week
- Find CVE PoCs on GitHub☆153Updated 2 months ago
- ☆169Updated 4 years ago
- This repo contains all the injections mentioned in my talk and enumerators.☆130Updated last year
- A source code static analysis platform for AppSec enthusiasts.☆262Updated 8 months ago
- Link sources to sinks in C# applications.☆145Updated 2 years ago