iosifache / semgrep-rules-manager
Manager of third-party sources of Semgrep rules π
β76Updated 3 months ago
Related projects β
Alternatives and complementary repositories for semgrep-rules-manager
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagramsβ97Updated 9 months ago
- An extension to use Semgrep inside Burp Suite.β87Updated last year
- Create notes during a security code review in VSCode π Import your favorite SAST tool findings π οΈ and collaborate with others π€β129Updated last year
- Proof-of-concept code for research into GitHub Actions Cache poisoning.β21Updated 2 months ago
- β175Updated this week
- β109Updated last year
- Encode and Fuzz Custom Protobuf Messages in Burp Suiteβ30Updated last year
- boostsecurityio/lotpβ100Updated 7 months ago
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.β39Updated 10 months ago
- β115Updated last year
- Blogpost series showcasing interesting cloud - web app security bugsβ45Updated last year
- Nuclei plugins to audit Chrome extensionsβ64Updated 3 months ago
- yataf extracts secrets and paths from files or urls - its best used against javascript filesβ51Updated last month
- A collection of my Semgrep rulesβ47Updated last year
- β39Updated last month
- Semgrep rules corresponding to the OWASP ASVS standardβ27Updated 4 years ago
- A curated list of argument injection vectorsβ37Updated 2 months ago
- FastCVE - fast, rich and API-based search for CVE and more (CPE, CWE, CAPEC)β39Updated 2 months ago
- This tool analyzes a given Gitlab repository and searches for dangling or force-pushed commits containing potential secret or interestingβ¦β39Updated 2 months ago
- Static Token And Credential Scannerβ95Updated last year
- β17Updated 2 years ago
- Simple PoC for demonstrating Race Conditions on Websocketsβ56Updated last year
- DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raiderβ138Updated 3 years ago
- a deterministic finite automata rankerβ69Updated 2 years ago
- MetaSec.js combines all the free open-source security tools to identify issues with JavaScript and automates the boring partsβ77Updated last year
- A GraphQL enumeration and extraction toolβ128Updated last year
- This repository hosts several snippets and file related to the BsidesLV 2024 talk about Shadow and Zombie APIs by meβ17Updated 3 months ago
- Paramalyzer - Burp extension for parameter analysis of large-scale web application penetration tests.β29Updated 2 years ago
- truffleproc β hunt secrets in process memory (TruffleHog & gdb mashup)β110Updated last year