An extension to use Semgrep inside Burp Suite.
☆90May 23, 2025Updated last year
Alternatives and similar repositories for semgrepper
Users that are interested in semgrepper are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Token Tailor is a Burp Suite Community Edition extension that aims to simplify security testing by automating JWT renewal.☆37Sep 30, 2025Updated 8 months ago
- HashiCorp-relevant rules for the Semgrep code analysis tool☆42Oct 3, 2023Updated 2 years ago
- Fast AEM scope gathering tool for all your public and private BugCrowd Programs☆10Jul 14, 2021Updated 4 years ago
- Burp extension to automatically drop requests that match a certain regex.☆10Mar 10, 2023Updated 3 years ago
- 手把手教你写IAST系列☆24Jan 12, 2024Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Burp Extension for AWS Signing☆93Jan 10, 2025Updated last year
- A Burp Suite extension for Lightning/Aura framework security testing with advanced action management, context editing, and comprehensive …☆67Mar 2, 2026Updated 3 months ago
- ☆245Updated this week
- yataf extracts secrets and paths from files or urls - its best used against javascript files☆52Sep 11, 2024Updated last year
- Burp extension to check and exploit the IIS Tilde Enumeration/IIS 8.3 Short Filename Disclosure vulnerability☆62Jun 12, 2023Updated 3 years ago
- A collection of Semgrep rules derived from the OWASP MASTG specifically for Android applications.☆331Jun 5, 2026Updated 2 weeks ago
- Semgrep-based Policy Controller for Kubernetes☆47Apr 4, 2025Updated last year
- Manager of 14 third-party sources comprising approximately 4,000 Semgrep rules 🗂☆116Dec 24, 2025Updated 5 months ago
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams☆111Jan 30, 2025Updated last year
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Find authentication (authn) and authorization (authz) security bugs in web application routes.☆280Sep 11, 2025Updated 9 months ago
- All the content from my Troopers 19 talk☆12Mar 20, 2019Updated 7 years ago
- Nuclei plugins to audit Chrome extensions☆66Jul 16, 2024Updated last year
- Tool to fuzz for interesting vhost.☆23Jan 8, 2025Updated last year
- Scrap Latest Information Security Resources☆35Nov 30, 2020Updated 5 years ago
- Encode and Fuzz Custom Protobuf Messages in Burp Suite☆38Mar 4, 2025Updated last year
- ☆59Jun 11, 2026Updated last week
- My custom semgrep rules☆23Sep 13, 2020Updated 5 years ago
- Secrets Patterns DB: The largest open-source Database for detecting secrets, API keys, passwords, tokens, and more.☆1,501Aug 6, 2025Updated 10 months ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- A projectdiscovery driven attack surface monitoring bot powered by axiom☆190Aug 11, 2022Updated 3 years ago
- A free, open-source, multi-lingual, template-based VDP policy, safe harbor clause, securitytxt, and DNS Security TXT generator.☆16Apr 17, 2026Updated 2 months ago
- ☆105Jan 3, 2023Updated 3 years ago
- BurpSuite extension to convert requests into bcheck scripts☆33Jul 18, 2023Updated 2 years ago
- JWT Support for Burp☆264Jan 6, 2026Updated 5 months ago
- MetaSec.js combines all the free open-source security tools to identify issues with JavaScript and automates the boring parts☆82Feb 4, 2023Updated 3 years ago
- FlowMate, a BurpSuite extension that brings taint analysis to web applications, by tracking all parameters send to a target application a…☆168Oct 28, 2025Updated 7 months ago
- Simple PoC for demonstrating Race Conditions on Websockets☆54Sep 14, 2023Updated 2 years ago
- AWS STS token decoder☆47Mar 18, 2025Updated last year
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- ☆32Sep 23, 2022Updated 3 years ago
- 《深入理解Semgrep》Finding vulnerabilities with Semgrep.☆60Jul 20, 2023Updated 2 years ago
- A collection of utilities for building extensions using Burp's Montoya API☆52Apr 14, 2026Updated 2 months ago
- ☆20Sep 6, 2023Updated 2 years ago
- Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝☆141May 3, 2026Updated last month
- ngrok Collaborator Link — yet another Burp Collaborator alternative for free with ngrok.☆115Jan 4, 2024Updated 2 years ago
- Hunt every Endpoint in your code, expose Shadow APIs, map the Attack Surface.☆1,327Updated this week