HashiCorp-relevant rules for the Semgrep code analysis tool
☆42Oct 3, 2023Updated 2 years ago
Alternatives and similar repositories for semgrep-rules
Users that are interested in semgrep-rules are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆41Dec 12, 2023Updated 2 years ago
- Semgrep-based Policy Controller for Kubernetes☆47Apr 4, 2025Updated last year
- My custom semgrep rules☆23Sep 13, 2020Updated 5 years ago
- Custom semgrep rules registry☆14Aug 23, 2022Updated 3 years ago
- Build a CVE library with aggregated CISA, EPSS and CVSS data☆29Sep 27, 2023Updated 2 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- An extension to use Semgrep inside Burp Suite.☆90May 23, 2025Updated last year
- Collection of Semgrep rules for security analysis☆10Mar 30, 2024Updated 2 years ago
- ☆116Feb 11, 2026Updated 4 months ago
- yataf extracts secrets and paths from files or urls - its best used against javascript files☆52Sep 11, 2024Updated last year
- Unsafe Unpacking Vulnerability: Lab Code, Semgrep Rules and Secure Implementation Guide☆44Dec 16, 2024Updated last year
- EZGHSA is a command-line tool for summarizing and filtering vulnerability alerts on Github repositories.☆35Jan 4, 2026Updated 5 months ago
- Compares and analyzes GCP IAM roles.☆78Mar 9, 2025Updated last year
- A ruleset to find potentially malicious code in macOS malware samples☆40Aug 29, 2023Updated 2 years ago
- 🖇️ equivalence table between OWASP ASVS standard and STRIDE threat modeling methodology.☆76Aug 22, 2024Updated last year
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- Nuclei plugins to audit Chrome extensions☆66Jul 16, 2024Updated last year
- 🌐 Visualize and explore IaC ✒️ Create and share notes in VS Code 🤝 Sync notes and findings in real-time with friends☆72Feb 2, 2024Updated 2 years ago
- Terraform module to Automatically suppress findings recorded by the AWS Security Hub service based on a pre-defined and configurable supp…☆19Updated this week
- Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.☆33Oct 13, 2022Updated 3 years ago
- Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets☆872Mar 28, 2025Updated last year
- ☆243Jun 3, 2026Updated last week
- ☆72Oct 24, 2025Updated 7 months ago
- Knowledge Report Alert & Normalization Generator☆26May 11, 2026Updated last month
- Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix☆59Sep 7, 2023Updated 2 years ago
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- ☆233May 29, 2026Updated last week
- Semgrep rules corresponding to the OWASP ASVS standard☆27Nov 2, 2020Updated 5 years ago
- ☆15Jul 17, 2024Updated last year
- ☆114Jun 8, 2023Updated 3 years ago
- ☆30Jan 13, 2026Updated 4 months ago
- A curated list of resources about detecting threats and defending Kubernetes systems.☆406Sep 2, 2023Updated 2 years ago
- Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).☆89Jan 28, 2024Updated 2 years ago
- Demonstrates how a malicious dependency could negatively impact the build output.☆26Aug 11, 2023Updated 2 years ago
- An OPA library to develop IT Control policies, for the IBM Cloud☆17Sep 26, 2022Updated 3 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- A CLI application to accompany on your terraform module journey and sharing your burden of module dependency updates, just as one brave H…☆20Oct 31, 2024Updated last year
- ACMagent - automates ACM certificates approval using cli☆11Mar 25, 2021Updated 5 years ago
- Unauthenticated enumeration of AWS IAM Roles.☆28Apr 18, 2026Updated last month
- Semgrep queries developed by Trail of Bits.☆514May 7, 2026Updated last month
- Manager of 14 third-party sources comprising approximately 4,000 Semgrep rules 🗂☆115Dec 24, 2025Updated 5 months ago
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.☆184Dec 11, 2025Updated 6 months ago
- Nessus Cheat Sheet in HTML, PDF, PNG, ADOC☆12Apr 10, 2022Updated 4 years ago