Alternatives and similar repositories for semgrep-rules

Users that are interested in semgrep-rules are comparing it to the libraries listed below

• roglew / puppy
  the puppy proxy
  ☆22Updated 5 years ago
• nccgroup / SFPolDevChk
  Salesforce Policy Deviation Checker
  ☆30Updated 5 years ago
• ttarvis / glasgo
  A Security Scanner for Go
  ☆26Updated 6 years ago
• TheBlusky / pickle-prick
  A vulnerable web application to explain and illustrate deserialization of untrusted data with Pickle.
  ☆13Updated 8 years ago
• semgrep / semgrep-docs
  Documentation of Semgrep: a fast, open-source, static analysis tool.
  ☆48Updated this week
• kelbyludwig / saml-attack-surface
  ☆29Updated 9 years ago
• v-p-b / DangerousPHPFunctions
  Growing list of potentially dangerous PHP functions
  ☆52Updated 6 years ago
• jstnkndy / scripts
  Scripts that I've written that others may find useful
  ☆14Updated 3 years ago
• lavalamp- / content-discovery-hit-lists
  This repository contains hit lists to use for web application content discovery.
  ☆11Updated 8 years ago
• s0rcy / semgrep-rules
  Collection of Semgrep rules for security analysis
  ☆10Updated last year
• nccgroup / RFC-Security-Research
  Paper, data and code from Investigating Potential Security Vulnerability Manifestation through Various Analyses & Inferences Regarding In…
  ☆19Updated 5 years ago
• spaceraccoon / serverless-recon-example
  Example of a serverless web reconaissance workflow's AWS architecture.
  ☆11Updated 2 years ago
• lowleveldesign / aspnetcrypter
  ☆19Updated 8 years ago
• nccgroup / glasgo
  Go static analysis tool that checks for security issues using an AST.
  ☆29Updated 7 years ago
• 0xdade / GitLoot
  Python tool for large scale git analysis. Inspired by gitrob.
  ☆21Updated 5 years ago
• Static-Flow / BurpSuiteShareRequests
  This Burp Suite extension enables the generation of shareable links to specific requests which other Burp Suite users can import.
  ☆12Updated 3 years ago
• nccgroup / encoderama
  String or worldlist encoder for use in fuzzing or web application testing
  ☆19Updated 6 years ago
• airman604 / cms2cmd
  ☆10Updated 7 years ago
• morganc3 / KOAuth
  OAuth 2.0 Dynamic Security Scanner
  ☆33Updated 4 years ago
• nightwatchcybersecurity / airflowscan
  Checklist and tools for increasing security of Apache Airflow
  ☆32Updated 4 years ago
• alex91ar / randomstringutils
  Cracker for Apache.lang.commons RandomStringUtils(). Code for "The Java Soothsayer" talk at EkoParty 2017 by Alejo Popovici.
  ☆33Updated 7 years ago
• ShadowHatesYou / whori.sh
  Zone transfers for rwhois
  ☆20Updated 6 years ago
• pry0cc / jf
  A wrapper around jq, to help you parse jq output!
  ☆30Updated 5 years ago
• N0MoreSecr3ts / wraith-signatures
  Signatures for wraith used to detect secrets across various sources
  ☆15Updated 3 years ago
• federicodotta / semgrep-rules
  A collection of my Semgrep rules
  ☆51Updated 2 years ago
• XiphosResearch / screenshottigans
  Screenshot Shenanigans
  ☆26Updated 8 years ago
• Static-Flow / goRecorder
  During pentesting I often miss screenshots of events for reports due to the quick pace of testing and a lack of foreknowledge about what …
  ☆26Updated 6 years ago
• securityMB / burp-exceptions
  Simple trick to increase readability of exceptions raised by Burp extensions written in Python
  ☆45Updated 8 years ago
• nccgroup / HTTPSignatures
  A Burp Suite extension implementing the Signing HTTP Messages draft-ietf-httpbis-message-signatures-01 draft.
  ☆42Updated 3 years ago
• SmeegeSec / GitHub-Wiki-Auditor
  Python script to check GitHub accounts for world-editable wiki pages
  ☆21Updated 2 years ago