Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Ful…
☆552Apr 10, 2022Updated 4 years ago
Alternatives and similar repositories for insider
Users that are interested in insider are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…☆875Sep 1, 2023Updated 2 years ago
- Horusec is an open source tool that improves identification of vulnerabilities in your project with just one command.☆1,319May 24, 2026Updated 2 weeks ago
- [W.I.P] An ecosystem of crawlers for detecting: leaks, sensitive data exposure and attempts exfiltration of data☆33Updated this week
- HTTP fuzzer engine security oriented☆60Updated this week
- Django application that performs SAST and Malware Analysis for Android APKs☆228May 20, 2026Updated 3 weeks ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.☆426Nov 14, 2024Updated last year
- APKHunt is a comprehensive static code analysis tool for Android apps that is based on the OWASP MASVS framework. Although APKHunt is int…☆965Jan 17, 2025Updated last year
- Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.☆2,676Updated this week
- Oversecured Vulnerable Android App☆746Jul 18, 2024Updated last year
- Runtime Mobile Security (RMS) 📱🔥 - is a powerful web interface that helps you to manipulate Android and iOS Apps at Runtime☆3,020Mar 28, 2026Updated 2 months ago
- Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.☆15,410Updated this week
- The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala proje…☆2,426Mar 26, 2026Updated 2 months ago
- Semgrep Community Edition rules, maintained by Semgrep and the community. Free to use under the Semgrep Rules License.☆1,176Updated this week
- Some of my past public researches are archived here☆20May 18, 2026Updated 3 weeks ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- nodejsscan is a static security code scanner for Node.js applications.☆2,563Oct 10, 2025Updated 8 months ago
- ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.☆2,459Jun 11, 2025Updated last year
- threatspec - continuous threat modeling, through code☆387Dec 30, 2020Updated 5 years ago
- Application Security Automation☆526Sep 5, 2023Updated 2 years ago
- Android Security Suite for in-depth reconnaissance and static bytecode analysis based on Ghera benchmarks.☆543Jan 6, 2023Updated 3 years ago
- Este repositorio é apenas um exemplo de como adicionar OWASP ZAP Actions em uma pipeline de DevOps.☆19Mar 12, 2021Updated 5 years ago
- A vulnerable Android application that shows simple examples of vulnerabilities in a ctf style.☆749Jun 25, 2021Updated 4 years ago
- OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependen…☆7,576Updated this week
- All kind of frida stuff when needed in pentesting or reverse engineering of an android app - The perfect starter kit☆18Jun 2, 2020Updated 6 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Generic SAST Library☆136May 19, 2026Updated 3 weeks ago
- The extension of Burp Suite for Conviso Platform aims to serve as an integration between them, making the life of an analyst easier, beca…☆36Mar 11, 2026Updated 2 months ago
- A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestrat…☆281Feb 17, 2026Updated 3 months ago
- Fully open-source SAST scanner supporting a range of languages and frameworks. Integrates with major CI pipelines and IDE such as Azure D…☆150Sep 4, 2020Updated 5 years ago
- mobsfscan is a static analysis tool that can find insecure code patterns in your Android and iOS source code. Supports Java, Kotlin, Swif…☆761Mar 12, 2026Updated 2 months ago
- Burp Suite Extension to monitor new scope☆16Mar 31, 2021Updated 5 years ago
- Multi-Cloud Security Auditing Tool☆7,683Sep 23, 2025Updated 8 months ago
- Scans Software Bill of Materials (SBOMs) for security vulnerabilities☆615Feb 10, 2026Updated 4 months ago
- ☆19Feb 11, 2026Updated 4 months ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- Framework for rapid development of offensive security tools☆114Updated this week
- A collection of custom security tools for quick needs.☆3,300May 1, 2023Updated 3 years ago
- ⚙️ A curated list of static analysis (SAST) tools and linters for all programming languages, config files, build tools, and more. The foc…☆14,593May 28, 2026Updated 2 weeks ago
- Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and …☆21,153May 19, 2026Updated 3 weeks ago
- GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes. - Do not use for illegal testing ;)☆1,666Mar 11, 2024Updated 2 years ago
- A curated list of amazingly awesome Burp Extensions☆3,419Feb 17, 2026Updated 3 months ago
- Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.o…☆1,939May 9, 2026Updated last month