A collection of my Semgrep rules
☆51Jul 4, 2023Updated 2 years ago
Alternatives and similar repositories for semgrep-rules
Users that are interested in semgrep-rules are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Custom semgrep rules registry☆14Aug 23, 2022Updated 3 years ago
- ☆234Apr 24, 2026Updated last month
- Collection of Semgrep rules for security analysis☆10Mar 30, 2024Updated 2 years ago
- My collection of Semgrep rules for vulnerability detection on source code (swift, java, cobol)☆43Dec 3, 2025Updated 5 months ago
- Semgrep queries developed by Trail of Bits.☆508May 7, 2026Updated 2 weeks ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Collection of rules for Static Application Security Testing (SAST) with Semgrep☆12Apr 16, 2025Updated last year
- apkfram was written in order to help any mobile penetration testers to identify the Framework used to develop the Android application.☆12Oct 9, 2024Updated last year
- A collection of Semgrep rules which followed security guidelines for .NET and Java.☆24Oct 4, 2021Updated 4 years ago
- A collection of Semgrep rules derived from the OWASP MASTG specifically for Android applications.☆328Nov 12, 2025Updated 6 months ago
- Salesforce Policy Deviation Checker☆30Sep 30, 2020Updated 5 years ago
- 该系列是从 2014 年到 2022 年的历史漏洞☆18Apr 3, 2023Updated 3 years ago
- A collection of my Semgrep rules to facilitate vulnerability research.☆813Apr 12, 2026Updated last month
- CLI tool for filtering URLs/IPs with automatically-updated Bug Bounty program scope rules.☆36Dec 31, 2025Updated 4 months ago
- CVE-2022-22965 - CVE-2010-1622 redux☆19Apr 18, 2023Updated 3 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Script for downloading Burp Suite extension files☆11Jan 29, 2024Updated 2 years ago
- Automated Cloud Misconfiguration Testing☆25Jun 20, 2025Updated 11 months ago
- Ricerca che mostra come scrivere regole per SemGrep per cercare SQL Injection nei plugin di Wordpress che usano action AJAX☆19Jul 22, 2023Updated 2 years ago
- ☆60Mar 9, 2026Updated 2 months ago
- OWASP Threat Dragon core files☆11Jan 26, 2026Updated 3 months ago
- swagroutes is a command-line tool that extracts and lists API routes from Swagger files in YAML or JSON format.☆61Apr 23, 2023Updated 3 years ago
- ☆83May 9, 2024Updated 2 years ago
- Tool for helping in the exploitation of path traversal vulnerabilities in Java web applications☆33Nov 4, 2022Updated 3 years ago
- An extension to use Semgrep inside Burp Suite.☆89May 23, 2025Updated last year
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- Unsafe Unpacking Vulnerability: Lab Code, Semgrep Rules and Secure Implementation Guide☆43Dec 16, 2024Updated last year
- A collection of scripts based on libclang for extracting API information from interpreters☆25Jul 10, 2012Updated 13 years ago
- Serpico-NG https://github.com/LUTECH-TMS-CERT/EHAT-NG☆11Dec 6, 2017Updated 8 years ago
- Pickle decompiler plugin for Radare2☆18Aug 6, 2023Updated 2 years ago
- A lightweight linting framework designed for complex applications using a mix of third-party linters and custom rules.☆26Apr 27, 2026Updated 3 weeks ago
- semgrep rules for flakiness, missed error handling, Lua antipatterns and pitfalls.☆18Nov 1, 2024Updated last year
- Semgrep rules specific to Frappe Framework☆62Mar 18, 2026Updated 2 months ago
- tetctf2020_amf_writeups☆23Jan 3, 2021Updated 5 years ago
- Burp extension to filter JSON on the fly with JQ queries in the HTTP message viewer.☆47Dec 24, 2020Updated 5 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- A dockerized, improved version of the Impacket smbserver.py☆39Jun 27, 2019Updated 6 years ago
- SARIF Explorer: A VSCode extension that helps you visualize and triage static analysis results☆50May 9, 2026Updated 2 weeks ago
- Static analysis tool to Identify and Fix GitHub Actions prone to Supply‑Chain Risks☆14Updated this week
- Automatic learning of (linear and nonlinear) control functions for nonlinear dynamical systems with stability certificates. The stability…☆14Jan 9, 2025Updated last year
- Proof of concept exploit for Ivanti EPM CVE-2024-13159 and others☆13Feb 19, 2025Updated last year
- Automated script to convert and push Burp Suite certificate in Android, and modify Android's IP table to redirect all traffic to Burp Sui…☆110Apr 30, 2023Updated 3 years ago
- Burp Suite plugin identifies insertion points for GWT (Google Web Toolkit) requests☆13Sep 24, 2015Updated 10 years ago