federicodotta/semgrep-rules external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

federicodotta/semgrep-rules

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/federicodotta/semgrep-rules)

Close

federicodotta / semgrep-rulesView on GitHubMore

• External links
• Readme badge

A collection of my Semgrep rules

☆51Jul 4, 2023Updated 2 years ago

Alternatives and similar repositories for semgrep-rules

Users that are interested in semgrep-rules are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• vmnguyen / semgrep-rules

  View on GitHub
  My custom semgrep rules
  ☆23Sep 13, 2020Updated 5 years ago
• kondukto-io / semgrep-rules

  View on GitHub
  Custom semgrep rules registry
  ☆14Aug 23, 2022Updated 3 years ago
• elttam / semgrep-rules

  View on GitHub
  ☆231Dec 18, 2025Updated 3 months ago
• s0rcy / semgrep-rules

  View on GitHub
  Collection of Semgrep rules for security analysis
  ☆10Mar 30, 2024Updated 2 years ago
• akabe1 / akabe1-semgrep-rules

  View on GitHub
  My collection of Semgrep rules for vulnerability detection on source code (swift, java, cobol)
  ☆43Dec 3, 2025Updated 4 months ago
• Wordpress hosting with auto-scaling - Free Trial • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• trailofbits / semgrep-rules

  View on GitHub
  Semgrep queries developed by Trail of Bits.
  ☆493Nov 12, 2025Updated 5 months ago
• dipa96 / semgrep-rules

  View on GitHub
  Collection of rules for Static Application Security Testing (SAST) with Semgrep
  ☆12Apr 16, 2025Updated 11 months ago
• rsenet / apkfram

  View on GitHub
  apkfram was written in order to help any mobile penetration testers to identify the Framework used to develop the Android application.
  ☆12Oct 9, 2024Updated last year
• tuannq2299 / semgrep-rules

  View on GitHub
  A collection of Semgrep rules which followed security guidelines for .NET and Java.
  ☆24Oct 4, 2021Updated 4 years ago
• mindedsecurity / semgrep-rules-android-security

  View on GitHub
  A collection of Semgrep rules derived from the OWASP MASTG specifically for Android applications.
  ☆326Nov 12, 2025Updated 5 months ago
• 0xdea / semgrep-rules

  View on GitHub
  A collection of my Semgrep rules to facilitate vulnerability research.
  ☆807Updated this week
• miaouPlop / GWT-3D

  View on GitHub
  ☆24Feb 12, 2016Updated 10 years ago
• silentsignal / SemGWT

  View on GitHub
  Semgrep rules to identify GWT attack surface
  ☆12Apr 28, 2022Updated 3 years ago
• ItsIgnacioPortal / Hacker-Scoper

  View on GitHub
  CLI tool for filtering URLs/IPs with automatically-updated Bug Bounty program scope rules.
  ☆35Dec 31, 2025Updated 3 months ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• DDuarte / springshell-rce-poc

  View on GitHub
  CVE-2022-22965 - CVE-2010-1622 redux
  ☆19Apr 18, 2023Updated 2 years ago
• chango77747 / NmapParser

  View on GitHub
  nmapParser.py is a tool developed for consultants doing nmap scans against a large range of hosts. I found it easy to identify hosts that…
  ☆13Jan 19, 2016Updated 10 years ago
• CompassSecurity / bapp-downloader

  View on GitHub
  Script for downloading Burp Suite extension files
  ☆11Jan 29, 2024Updated 2 years ago
• mrnfrancesco / GreedyForSQLi

  View on GitHub
  Ricerca che mostra come scrivere regole per SemGrep per cercare SQL Injection nei plugin di Wordpress che usano action AJAX
  ☆19Jul 22, 2023Updated 2 years ago
• Leoid / Burp2Slack

  View on GitHub
  Push notifications to Slack channel or to custom server based on BurpSuite response conditions.
  ☆17Nov 26, 2020Updated 5 years ago
• jeffbencteux / mailsecchk

  View on GitHub
  POSIX script for mail security checks of domain names
  ☆76Jul 24, 2023Updated 2 years ago
• mike-goodwin / owasp-threat-dragon-core

  View on GitHub
  OWASP Threat Dragon core files
  ☆11Jan 26, 2026Updated 2 months ago
• amalmurali47 / swagroutes

  View on GitHub
  swagroutes is a command-line tool that extracts and lists API routes from Swagger files in YAML or JSON format.
  ☆61Apr 23, 2023Updated 2 years ago
• DeiteriyLab / protobuf-magic

  View on GitHub
  ☆83May 9, 2024Updated last year
• Deploy open-source AI quickly and easily - Bonus Offer • Ad
  Runpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
• Invicti-Security / web-inf-path-trav

  View on GitHub
  Tool for helping in the exploitation of path traversal vulnerabilities in Java web applications
  ☆32Nov 4, 2022Updated 3 years ago
• xfox64x / AppDomainExample

  View on GitHub
  A .NET tool that uses AppDomain's to enable dynamic execution and escape detection.
  ☆29Nov 25, 2019Updated 6 years ago
• awslabs / Chatbot-to-help-security-teams-perform-vulnerability-assessments

  View on GitHub
  ☆29Dec 26, 2025Updated 3 months ago
• hashicorp-forge / semgrep-rules

  View on GitHub
  HashiCorp-relevant rules for the Semgrep code analysis tool
  ☆41Oct 3, 2023Updated 2 years ago
• doyensec / Unsafe-Unpacking

  View on GitHub
  Unsafe Unpacking Vulnerability: Lab Code, Semgrep Rules and Secure Implementation Guide
  ☆43Dec 16, 2024Updated last year
• frappe / semgrep-rules

  View on GitHub
  Semgrep rules specific to Frappe Framework
  ☆57Mar 18, 2026Updated 3 weeks ago
• doyensec / r2pickledec

  View on GitHub
  Pickle decompiler plugin for Radare2
  ☆18Aug 6, 2023Updated 2 years ago
• ligurio / semgrep-rules

  View on GitHub
  semgrep rules for flakiness, missed error handling, Lua antipatterns and pitfalls.
  ☆18Nov 1, 2024Updated last year
• synacktiv / burp-jq

  View on GitHub
  Burp extension to filter JSON on the fly with JQ queries in the HTTP message viewer.
  ☆47Dec 24, 2020Updated 5 years ago
• Deploy open-source AI quickly and easily - Bonus Offer • Ad
  Runpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
• h4x0r-dz / createfiles

  View on GitHub
  ☆14Aug 22, 2025Updated 7 months ago
• navisecdelta / PwnFile

  View on GitHub
  A dockerized, improved version of the Impacket smbserver.py
  ☆39Jun 27, 2019Updated 6 years ago
• cybrota / scharf

  View on GitHub
  Static analysis tool to Identify and Fix GitHub Actions prone to Supply‑Chain Risks
  ☆14Dec 24, 2025Updated 3 months ago
• horizon3ai / Ivanti-EPM-Coercion-Vulnerabilities

  View on GitHub
  Proof of concept exploit for Ivanti EPM CVE-2024-13159 and others
  ☆13Feb 19, 2025Updated last year
• Anof-cyber / Androset

  View on GitHub
  Automated script to convert and push Burp Suite certificate in Android, and modify Android's IP table to redirect all traffic to Burp Sui…
  ☆111Apr 30, 2023Updated 2 years ago
• augustd / burp-suite-gwt-scan

  View on GitHub
  Burp Suite plugin identifies insertion points for GWT (Google Web Toolkit) requests
  ☆13Sep 24, 2015Updated 10 years ago
• Annihilat0r / owaspctf

  View on GitHub
  OWASP Ukraine 2019 CTF
  ☆12Feb 10, 2023Updated 3 years ago