Alternatives and similar repositories for sapp

Users that are interested in sapp are comparing it to the libraries listed below

• google / oss-fuzz-vulns
  OSS-Fuzz vulnerabilities for OSV.
  ☆162Updated this week
• ajinabraham / libsast
  Generic SAST Library
  ☆132Updated 4 months ago
• githubuniverseworkshops / codeql
  CodeQL workshops for GitHub Universe
  ☆96Updated 2 years ago
• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆153Updated last year
• microsoft / sarif-python-om
  Python classes for the SARIF object model
  ☆44Updated last year
• microsoft / codeql-container
  Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.
  ☆119Updated last year
• Yelp / fuzz-lightyear
  A pytest-inspired, DAST framework, capable of identifying vulnerabilities in a distributed, micro-service ecosystem through chaos enginee…
  ☆227Updated last year
• advanced-security / codeql-queries
  [Deprecated] GitHub's Field Team's CodeQL Custom Queries, Suites, and Configurations. See GitHubSecurityLab/CodeQL-Community-Packs instea…
  ☆85Updated last year
• fuzzitdev / pythonfuzz
  coverage guided fuzz testing for python
  ☆227Updated 5 years ago
• microsoft / sarif-vscode-extension
  SARIF Microsoft Visual Studio Code extension
  ☆122Updated 2 months ago
• bahruzjabiyev / frameshifter
  Grammar-based HTTP/2 fuzzer with mutation ability
  ☆47Updated 3 years ago
• mariussteffens / pmforce
  Source code for ACM CCS 2020 Paper PMForce: Systematically Analyzing postMessage Handlers at Scale
  ☆18Updated 4 years ago
• Fraunhofer-AISEC / codyze
  Codyze is a static analyzer for Java, C, C++ based on code property graphs
  ☆89Updated 9 months ago
• GitHubSecurityLab / gh-mrva
  Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)
  ☆59Updated 6 months ago
• Invizory / taintflow
  TaintFlow, a framework for JavaScript dynamic information flow analysis.
  ☆18Updated 2 years ago
• angr / pysoot
  Python bindings for Shimple/Jimple IR from Soot.
  ☆42Updated 3 months ago
• secure-software-engineering / COVA
  COVA - A static analysis tool to compute path conditions
  ☆37Updated 3 months ago
• google / vandalir
  ☆42Updated 2 years ago
• MozillaSecurity / grizzly
  A cross-platform browser fuzzing framework
  ☆313Updated this week
• parikhakshat / autoharness
  A tool that automatically creates fuzzing harnesses based on a library
  ☆280Updated 3 years ago
• vrthra / F1
  ☆82Updated 2 months ago
• ossf / fuzz-introspector
  Fuzz Introspector -- introspect, extend and optimise fuzzers
  ☆431Updated this week
• trailofbits / codeql-queries
  CodeQL queries developed by Trail of Bits
  ☆133Updated 2 weeks ago
• joernio / query-database
  Default query sets for Joern
  ☆26Updated 4 years ago
• GitHubSecurityLab / codeql-zero-to-hero
  CodeQL zero to hero blog post series challenges
  ☆149Updated last month
• too4words / securibench-micro
  Securibench Micro is a benchmark for static analysis tools for security.
  ☆26Updated 7 years ago
• GeekMasher / security-codeql
  CodeQL Security Queries
  ☆27Updated last week
• Teebytes / TnT-Fuzzer
  OpenAPI 2.0 (Swagger) fuzzer written in python. Basically TnT for your API.
  ☆111Updated 2 years ago
• google / security-crawl-maze
  Security Crawl Maze is a comprehensive testbed for web security crawlers. It contains pages representing many ways in which one can link …
  ☆164Updated last year
• plume-oss / plume
  Plume is a code representation benchmarking library with options to extract the AST from Java bytecode and store the result in various gr…
  ☆75Updated last year