federicodotta/semgrep-rules external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

federicodotta/semgrep-rules

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/federicodotta/semgrep-rules)

Close

federicodotta / semgrep-rulesView on GitHubMore

• External links
• Readme badge

A collection of my Semgrep rules

☆51Jul 4, 2023Updated 2 years ago

Alternatives and similar repositories for semgrep-rules

Users that are interested in semgrep-rules are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• vmnguyen / semgrep-rules

  View on GitHub
  My custom semgrep rules
  ☆23Sep 13, 2020Updated 5 years ago
• elttam / semgrep-rules

  View on GitHub
  ☆233Apr 24, 2026Updated last week
• akabe1 / akabe1-semgrep-rules

  View on GitHub
  My collection of Semgrep rules for vulnerability detection on source code (swift, java, cobol)
  ☆43Dec 3, 2025Updated 5 months ago
• trailofbits / semgrep-rules

  View on GitHub
  Semgrep queries developed by Trail of Bits.
  ☆502Nov 12, 2025Updated 5 months ago
• rsenet / apkfram

  View on GitHub
  apkfram was written in order to help any mobile penetration testers to identify the Framework used to develop the Android application.
  ☆12Oct 9, 2024Updated last year
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• tuannq2299 / semgrep-rules

  View on GitHub
  A collection of Semgrep rules which followed security guidelines for .NET and Java.
  ☆24Oct 4, 2021Updated 4 years ago
• mindedsecurity / semgrep-rules-android-security

  View on GitHub
  A collection of Semgrep rules derived from the OWASP MASTG specifically for Android applications.
  ☆329Nov 12, 2025Updated 5 months ago
• nccgroup / SFPolDevChk

  View on GitHub
  Salesforce Policy Deviation Checker
  ☆30Sep 30, 2020Updated 5 years ago
• H4K6 / wordpress-exploits

  View on GitHub
  该系列是从 2014 年到 2022 年的历史漏洞
  ☆18Apr 3, 2023Updated 3 years ago
• 0xdea / semgrep-rules

  View on GitHub
  A collection of my Semgrep rules to facilitate vulnerability research.
  ☆811Apr 12, 2026Updated 3 weeks ago
• miaouPlop / GWT-3D

  View on GitHub
  ☆24Feb 12, 2016Updated 10 years ago
• ItsIgnacioPortal / Hacker-Scoper

  View on GitHub
  CLI tool for filtering URLs/IPs with automatically-updated Bug Bounty program scope rules.
  ☆36Dec 31, 2025Updated 4 months ago
• DDuarte / springshell-rce-poc

  View on GitHub
  CVE-2022-22965 - CVE-2010-1622 redux
  ☆19Apr 18, 2023Updated 3 years ago
• CompassSecurity / bapp-downloader

  View on GitHub
  Script for downloading Burp Suite extension files
  ☆11Jan 29, 2024Updated 2 years ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• mrnfrancesco / GreedyForSQLi

  View on GitHub
  Ricerca che mostra come scrivere regole per SemGrep per cercare SQL Injection nei plugin di Wordpress che usano action AJAX
  ☆19Jul 22, 2023Updated 2 years ago
• jeffbencteux / mailsecchk

  View on GitHub
  POSIX script for mail security checks of domain names
  ☆76Jul 24, 2023Updated 2 years ago
• amalmurali47 / swagroutes

  View on GitHub
  swagroutes is a command-line tool that extracts and lists API routes from Swagger files in YAML or JSON format.
  ☆61Apr 23, 2023Updated 3 years ago
• DeiteriyLab / protobuf-magic

  View on GitHub
  ☆83May 9, 2024Updated last year
• Invicti-Security / web-inf-path-trav

  View on GitHub
  Tool for helping in the exploitation of path traversal vulnerabilities in Java web applications
  ☆32Nov 4, 2022Updated 3 years ago
• xfox64x / AppDomainExample

  View on GitHub
  A .NET tool that uses AppDomain's to enable dynamic execution and escape detection.
  ☆29Nov 25, 2019Updated 6 years ago
• awslabs / Chatbot-to-help-security-teams-perform-vulnerability-assessments

  View on GitHub
  ☆29Dec 26, 2025Updated 4 months ago
• frappe / semgrep-rules

  View on GitHub
  Semgrep rules specific to Frappe Framework
  ☆59Mar 18, 2026Updated last month
• SeanHeelan / InterParser

  View on GitHub
  A collection of scripts based on libclang for extracting API information from interpreters
  ☆25Jul 10, 2012Updated 13 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• 0xded093 / Serpico-NG

  View on GitHub
  Serpico-NG https://github.com/LUTECH-TMS-CERT/EHAT-NG
  ☆11Dec 6, 2017Updated 8 years ago
• doyensec / r2pickledec

  View on GitHub
  Pickle decompiler plugin for Radare2
  ☆18Aug 6, 2023Updated 2 years ago
• jrudolph / better-future-exceptions

  View on GitHub
  A POC for better exception reporting for futures
  ☆12Aug 20, 2014Updated 11 years ago
• peterjson31337 / tetctf2021

  View on GitHub
  tetctf2020_amf_writeups
  ☆23Jan 3, 2021Updated 5 years ago
• synacktiv / burp-jq

  View on GitHub
  Burp extension to filter JSON on the fly with JQ queries in the HTTP message viewer.
  ☆47Dec 24, 2020Updated 5 years ago
• h4x0r-dz / createfiles

  View on GitHub
  ☆14Aug 22, 2025Updated 8 months ago
• navisecdelta / PwnFile

  View on GitHub
  A dockerized, improved version of the Impacket smbserver.py
  ☆39Jun 27, 2019Updated 6 years ago
• grande-dev / Augmented-Neural-Lyapunov-Control

  View on GitHub
  Automatic learning of (linear and nonlinear) control functions for nonlinear dynamical systems with stability certificates. The stability…
  ☆14Jan 9, 2025Updated last year
• horizon3ai / Ivanti-EPM-Coercion-Vulnerabilities

  View on GitHub
  Proof of concept exploit for Ivanti EPM CVE-2024-13159 and others
  ☆13Feb 19, 2025Updated last year
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• Anof-cyber / Androset

  View on GitHub
  Automated script to convert and push Burp Suite certificate in Android, and modify Android's IP table to redirect all traffic to Burp Sui…
  ☆111Apr 30, 2023Updated 3 years ago
• augustd / burp-suite-gwt-scan

  View on GitHub
  Burp Suite plugin identifies insertion points for GWT (Google Web Toolkit) requests
  ☆13Sep 24, 2015Updated 10 years ago
• assetnote / batchql

  View on GitHub
  GraphQL security auditing script with a focus on performing batch GraphQL queries and mutations
  ☆411Dec 24, 2022Updated 3 years ago
• magicmatatjahu / milv

  View on GitHub
  Markdown internal & external links validation library and CLI
  ☆11Jul 16, 2019Updated 6 years ago
• Annihilat0r / owaspctf

  View on GitHub
  OWASP Ukraine 2019 CTF
  ☆12Feb 10, 2023Updated 3 years ago
• nccgroup / Cisco-SNMP-Slap

  View on GitHub
  ☆58Nov 27, 2014Updated 11 years ago
• jeremylong / malicious-dependencies

  View on GitHub
  Demonstrates how a malicious dependency could negatively impact the build output.
  ☆25Aug 11, 2023Updated 2 years ago