An extension to use Semgrep inside Burp Suite.
☆90May 23, 2025Updated last year
Alternatives and similar repositories for semgrepper
Users that are interested in semgrepper are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Token Tailor is a Burp Suite Community Edition extension that aims to simplify security testing by automating JWT renewal.☆36Sep 30, 2025Updated 8 months ago
- HashiCorp-relevant rules for the Semgrep code analysis tool☆42Oct 3, 2023Updated 2 years ago
- Fast AEM scope gathering tool for all your public and private BugCrowd Programs☆10Jul 14, 2021Updated 4 years ago
- Burp extension to automatically drop requests that match a certain regex.☆10Mar 10, 2023Updated 3 years ago
- 手把手教你写IAST系列☆24Jan 12, 2024Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Burp Extension for AWS Signing☆93Jan 10, 2025Updated last year
- A Burp Suite extension for Lightning/Aura framework security testing with advanced action management, context editing, and comprehensive …☆67Mar 2, 2026Updated 2 months ago
- ☆234Apr 24, 2026Updated last month
- yataf extracts secrets and paths from files or urls - its best used against javascript files☆52Sep 11, 2024Updated last year
- Burp extension to check and exploit the IIS Tilde Enumeration/IIS 8.3 Short Filename Disclosure vulnerability☆62Jun 12, 2023Updated 2 years ago
- Semgrep-based Policy Controller for Kubernetes☆47Apr 4, 2025Updated last year
- A collection of Semgrep rules derived from the OWASP MASTG specifically for Android applications.☆328Nov 12, 2025Updated 6 months ago
- Manager of 14 third-party sources comprising approximately 4,000 Semgrep rules 🗂☆113Dec 24, 2025Updated 5 months ago
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams☆109Jan 30, 2025Updated last year
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- Find authentication (authn) and authorization (authz) security bugs in web application routes.☆279Sep 11, 2025Updated 8 months ago
- All the content from my Troopers 19 talk☆12Mar 20, 2019Updated 7 years ago
- Nuclei plugins to audit Chrome extensions☆65Jul 16, 2024Updated last year
- Tool to fuzz for interesting vhost.☆23Jan 8, 2025Updated last year
- Scrap Latest Information Security Resources☆35Nov 30, 2020Updated 5 years ago
- Encode and Fuzz Custom Protobuf Messages in Burp Suite☆38Mar 4, 2025Updated last year
- ☆59May 21, 2026Updated last week
- My custom semgrep rules☆23Sep 13, 2020Updated 5 years ago
- Secrets Patterns DB: The largest open-source Database for detecting secrets, API keys, passwords, tokens, and more.☆1,493Aug 6, 2025Updated 9 months ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- A projectdiscovery driven attack surface monitoring bot powered by axiom☆190Aug 11, 2022Updated 3 years ago
- A free, open-source, multi-lingual, template-based VDP policy, safe harbor clause, securitytxt, and DNS Security TXT generator.☆16Apr 17, 2026Updated last month
- ☆105Jan 3, 2023Updated 3 years ago
- BurpSuite extension to convert requests into bcheck scripts☆33Jul 18, 2023Updated 2 years ago
- MetaSec.js combines all the free open-source security tools to identify issues with JavaScript and automates the boring parts☆82Feb 4, 2023Updated 3 years ago
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆167Oct 28, 2025Updated 7 months ago
- Simple PoC for demonstrating Race Conditions on Websockets☆54Sep 14, 2023Updated 2 years ago
- AWS STS token decoder☆47Mar 18, 2025Updated last year
- Demo of various ways to exploit post based reflected XSS☆18Jul 6, 2023Updated 2 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- ☆32Sep 23, 2022Updated 3 years ago
- 《深入理解Semgrep》Finding vulnerabilities with Semgrep.☆60Jul 20, 2023Updated 2 years ago
- A collection of utilities for building extensions using Burp's Montoya API☆51Apr 14, 2026Updated last month
- ☆20Sep 6, 2023Updated 2 years ago
- ngrok Collaborator Link — yet another Burp Collaborator alternative for free with ngrok.☆114Jan 4, 2024Updated 2 years ago
- Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝☆142May 3, 2026Updated 3 weeks ago
- A collection of my Semgrep rules☆52Jul 4, 2023Updated 2 years ago