Manager of 14 third-party sources comprising approximately 4,000 Semgrep rules š
ā106Dec 24, 2025Updated 3 months ago
Alternatives and similar repositories for semgrep-rules-manager
Users that are interested in semgrep-rules-manager are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Curated Collection of Popular Community Rules for Semgrepā17Dec 27, 2023Updated 2 years ago
- Semgrep queries developed by Trail of Bits.ā493Nov 12, 2025Updated 5 months ago
- Semgrep Community Edition rules, maintained by Semgrep and the community. Free to use under the Semgrep Rules License.ā1,123Updated this week
- An extension to use Semgrep inside Burp Suite.ā88May 23, 2025Updated 10 months ago
- Collection of Semgrep rules for security analysisā10Mar 30, 2024Updated 2 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI ā¢ AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- ā231Dec 18, 2025Updated 3 months ago
- Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)ā63Apr 16, 2025Updated 11 months ago
- MCP Server Semgrep is a [Model Context Protocol](https://modelcontextprotocol.io) compliant server that integrates the powerful Semgrep sā¦ā27Mar 20, 2025Updated last year
- HashiCorp-relevant rules for the Semgrep code analysis toolā41Oct 3, 2023Updated 2 years ago
- A collection of my Semgrep rules to facilitate vulnerability research.ā807Updated this week
- Gram is Klarna's own threat model diagramming toolā332Updated this week
- Firefox extension that shows parquet schema when going over GCP cloud storage. Use DuckDB WASMā12Jan 19, 2024Updated 2 years ago
- My custom semgrep rulesā23Sep 13, 2020Updated 5 years ago
- An implementation of infrastructure-as-code scanning using dynamic tooling.ā56Jan 18, 2022Updated 4 years ago
- Deploy open-source AI quickly and easily - Bonus Offer ā¢ AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- Semgrep rules corresponding to the OWASP ASVS standardā27Nov 2, 2020Updated 5 years ago
- For finding secrets, tokens and other common mistakes made by developers.ā12Oct 21, 2025Updated 5 months ago
- GitleaksVerifier is a Python-based verification tool designed to enhance the functionality of Gitleaks by rigorously validating secrets fā¦ā29Mar 9, 2025Updated last year
- Generic SAST Libraryā136Jun 17, 2025Updated 9 months ago
- Unsafe Unpacking Vulnerability: Lab Code, Semgrep Rules and Secure Implementation Guideā43Dec 16, 2024Updated last year
- A python-based padding oracle toolā20Mar 31, 2026Updated 2 weeks ago
- Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive filesā229Mar 30, 2026Updated 2 weeks ago
- Remove duplicate URLs by retaining only the unique combinations of hostname, path, and parameter namesā39May 5, 2024Updated last year
- A Python-based tool to create zip, tar and cpio archives to exploit common archive library issues and developer mistakesā43Nov 28, 2025Updated 4 months ago
- 1-Click AI Models by DigitalOcean Gradient ā¢ AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Secrets scanner that understands codeā192Nov 2, 2023Updated 2 years ago
- ā36Apr 24, 2024Updated last year
- My collection of Semgrep rules for vulnerability detection on source code (swift, java, cobol)ā43Dec 3, 2025Updated 4 months ago
- Automatically look for paramater reflections in the HTTP responseā17Apr 30, 2025Updated 11 months ago
- Example of a vulnerable NodeJS+Express+MySQL serviceā20Jan 17, 2023Updated 3 years ago
- Utility to analyse, ingest and push out credentials from common data sources during an internal penetration test.ā19Jun 12, 2022Updated 3 years ago
- Simplify and speed up common tasks in your ORT-based FOSS review workflowsā13Dec 19, 2025Updated 3 months ago
- Quickly collect data from thousands of exposed Elasticsearch or Kibana instances and generate a report to be analysed.ā30Jan 7, 2022Updated 4 years ago
- Common Corpus is used to build coverage-minimized corpus data sets for fuzzing.ā29Aug 16, 2023Updated 2 years ago
- 1-Click AI Models by DigitalOcean Gradient ā¢ AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Archive Alchemist is a tool for creating specially crafted archives to test extraction vulnerabilities.ā228Jul 24, 2025Updated 8 months ago
- Unsecure time-based secret exploitation and Sandwich attack implementation Resourcesā148Dec 9, 2024Updated last year
- Shielder's public proof of concepts collectionā33Jul 31, 2025Updated 8 months ago
- This repository contains all the examples related to a series of tutorials that demonstrate how to use the new Montoya API of Burp Suite ā¦ā50Dec 10, 2025Updated 4 months ago
- šļø equivalence table between OWASP ASVS standard and STRIDE threat modeling methodology.ā76Aug 22, 2024Updated last year
- Use AI to Scan Your Code from the Command Line for security and code smells. Bring your own keys. Supports OpenAI and Geminiā175Apr 23, 2025Updated 11 months ago
- jQuery plugin for fuzzy search in autocompleteā17May 25, 2022Updated 3 years ago