A collection of my Semgrep rules
☆52Jul 4, 2023Updated 2 years ago
Alternatives and similar repositories for semgrep-rules
Users that are interested in semgrep-rules are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- My custom semgrep rules☆23Sep 13, 2020Updated 5 years ago
- ☆243Jun 3, 2026Updated last week
- Collection of Semgrep rules for security analysis☆10Mar 30, 2024Updated 2 years ago
- My collection of Semgrep rules for vulnerability detection on source code (swift, java, cobol)☆44Dec 3, 2025Updated 6 months ago
- Collection of rules for Static Application Security Testing (SAST) with Semgrep☆12Apr 16, 2025Updated last year
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- apkfram was written in order to help any mobile penetration testers to identify the Framework used to develop the Android application.☆12Oct 9, 2024Updated last year
- A collection of Semgrep rules which followed security guidelines for .NET and Java.☆24Oct 4, 2021Updated 4 years ago
- Salesforce Policy Deviation Checker☆30Sep 30, 2020Updated 5 years ago
- 该系列是从 2014 年到 2022 年的历史漏洞☆18Apr 3, 2023Updated 3 years ago
- A collection of my Semgrep rules to facilitate vulnerability research.☆823Updated this week
- ☆24Feb 12, 2016Updated 10 years ago
- Semgrep rules to identify GWT attack surface☆12Apr 28, 2022Updated 4 years ago
- Used to manage burp extensions that I find useful.☆12Apr 26, 2022Updated 4 years ago
- CLI tool for filtering URLs/IPs with automatically-updated Bug Bounty program scope rules.☆40Dec 31, 2025Updated 5 months ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- nmapParser.py is a tool developed for consultants doing nmap scans against a large range of hosts. I found it easy to identify hosts that…☆13Jan 19, 2016Updated 10 years ago
- Script for downloading Burp Suite extension files☆12Jan 29, 2024Updated 2 years ago
- Ricerca che mostra come scrivere regole per SemGrep per cercare SQL Injection nei plugin di Wordpress che usano action AJAX☆19Jul 22, 2023Updated 2 years ago
- POSIX script for mail security checks of domain names☆75Jul 24, 2023Updated 2 years ago
- Push notifications to Slack channel or to custom server based on BurpSuite response conditions.☆17Nov 26, 2020Updated 5 years ago
- Automated Cloud Misconfiguration Testing☆25Jun 20, 2025Updated 11 months ago
- OWASP Threat Dragon core files☆11Jan 26, 2026Updated 4 months ago
- ☆60May 24, 2026Updated 3 weeks ago
- swagroutes is a command-line tool that extracts and lists API routes from Swagger files in YAML or JSON format.☆61Apr 23, 2023Updated 3 years ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- ☆83May 9, 2024Updated 2 years ago
- Tool for helping in the exploitation of path traversal vulnerabilities in Java web applications☆33Nov 4, 2022Updated 3 years ago
- Gouge is a simple Burp extension to extract or gouge all URLs which are seen in JS files as you visit different websites/webpages in Burp…☆30Jul 21, 2024Updated last year
- A .NET tool that uses AppDomain's to enable dynamic execution and escape detection.☆29Nov 25, 2019Updated 6 years ago
- An extension to use Semgrep inside Burp Suite.☆90May 23, 2025Updated last year
- ☆29Dec 26, 2025Updated 5 months ago
- HashiCorp-relevant rules for the Semgrep code analysis tool☆42Oct 3, 2023Updated 2 years ago
- Unsafe Unpacking Vulnerability: Lab Code, Semgrep Rules and Secure Implementation Guide☆44Dec 16, 2024Updated last year
- A collection of scripts based on libclang for extracting API information from interpreters☆25Jul 10, 2012Updated 13 years ago
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- Serpico-NG https://github.com/LUTECH-TMS-CERT/EHAT-NG☆11Dec 6, 2017Updated 8 years ago
- A lightweight linting framework designed for complex applications using a mix of third-party linters and custom rules.☆26Apr 27, 2026Updated last month
- semgrep rules for flakiness, missed error handling, Lua antipatterns and pitfalls.☆18Nov 1, 2024Updated last year
- A POC for better exception reporting for futures☆12Aug 20, 2014Updated 11 years ago
- tetctf2020_amf_writeups☆23Jan 3, 2021Updated 5 years ago
- Burp extension to filter JSON on the fly with JQ queries in the HTTP message viewer.☆48Dec 24, 2020Updated 5 years ago
- ☆14Aug 22, 2025Updated 9 months ago