elttam / semgrep-rules
☆184Updated 4 months ago
Alternatives and similar repositories for semgrep-rules:
Users that are interested in semgrep-rules are comparing it to the libraries listed below
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams☆102Updated last month
- Manager of third-party sources of Semgrep rules 🗂☆81Updated 8 months ago
- An extension to use Semgrep inside Burp Suite.☆88Updated last year
- Find authentication (authn) and authorization (authz) security bugs in web application routes.☆258Updated last week
- Burp Suite Extension useful to verify OAUTHv2 and OpenID security☆171Updated 4 months ago
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆156Updated 4 months ago
- Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝☆132Updated last week
- A collection of my Semgrep rules☆48Updated last year
- The Burp extension to check JWT (JSON Web Tokens) for using keys from known from public sources☆128Updated 4 years ago
- Grammar-based HTTP/1 fuzzer with mutation ability☆248Updated 4 months ago
- A Burp Suite Extension for parsing Project Files from the CLI.☆87Updated 5 months ago
- PP-finder Help you find gadget for prototype pollution exploitation☆152Updated 7 months ago
- A GraphQL enumeration and extraction tool☆130Updated 2 years ago
- Burp Suite extension that offers a toolkit for testing GraphQL endpoints.☆191Updated 7 months ago
- A curated list of awesome browser security learning material.☆140Updated 2 years ago
- Proof of concept code for Datadog Security Labs referenced exploits.☆425Updated last year
- ☆147Updated 3 years ago
- XBOW Validation Benchmarks☆76Updated 6 months ago
- DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raider☆138Updated 3 years ago
- Find CVE PoCs on GitHub☆144Updated last year
- GitHub Attack Toolkit - Extreme Edition - A static analysis and exploit toolkit for GitHub Actions.☆255Updated this week
- This repo contains all the injections mentioned in my talk and enumerators.☆123Updated last year
- Burp Extension that copies a request and builds a FFUF skeleton☆111Updated last year
- Workshop given at Hack in Paris 2019☆121Updated last year
- Link sources to sinks in C# applications.☆143Updated last year
- A python script to merge multiple jar files for easier debugging via JD-Eclipse☆60Updated 2 years ago
- Silent Spring: Prototype Pollution Leads to Remote Code Execution in Node.js☆64Updated last year
- ☆402Updated 3 years ago
- ☆44Updated 4 years ago
- ☆160Updated 3 years ago