Alternatives and similar repositories for semgrep-rules

Users that are interested in semgrep-rules are comparing it to the libraries listed below

• ttarvis / glasgo
  A Security Scanner for Go
  ☆26Updated 6 years ago
• nccgroup / SFPolDevChk
  Salesforce Policy Deviation Checker
  ☆30Updated 5 years ago
• s0rcy / semgrep-rules
  Collection of Semgrep rules for security analysis
  ☆10Updated last year
• georlav / objectmap
  A Simple command line tool that helps checking web applications to identify insecure deserialization vulnerabilities.
  ☆24Updated 6 years ago
• nccgroup / glasgo
  Go static analysis tool that checks for security issues using an AST.
  ☆29Updated 6 years ago
• vmnguyen / semgrep-rules
  My custom semgrep rules
  ☆22Updated 5 years ago
• PortSwigger / attack-surface-detector
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆14Updated 3 years ago
• jstnkndy / scripts
  Scripts that I've written that others may find useful
  ☆14Updated 3 years ago
• nccgroup / RFC-Security-Research
  Paper, data and code from Investigating Potential Security Vulnerability Manifestation through Various Analyses & Inferences Regarding In…
  ☆18Updated 4 years ago
• v-p-b / DangerousPHPFunctions
  Growing list of potentially dangerous PHP functions
  ☆52Updated 6 years ago
• spaceraccoon / serverless-recon-example
  Example of a serverless web reconaissance workflow's AWS architecture.
  ☆11Updated 2 years ago
• lavalamp- / content-discovery-hit-lists
  This repository contains hit lists to use for web application content discovery.
  ☆11Updated 8 years ago
• silentsignal / burp-uuid
  UUID issues for Burp Suite
  ☆52Updated 3 years ago
• kelbyludwig / saml-attack-surface
  ☆29Updated 8 years ago
• N0MoreSecr3ts / wraith-signatures
  Signatures for wraith used to detect secrets across various sources
  ☆15Updated 3 years ago
• roglew / puppy
  the puppy proxy
  ☆22Updated 5 years ago
• SmeegeSec / GitHub-Wiki-Auditor
  Python script to check GitHub accounts for world-editable wiki pages
  ☆21Updated 2 years ago
• 0xdade / GitLoot
  Python tool for large scale git analysis. Inspired by gitrob.
  ☆20Updated 5 years ago
• federicodotta / semgrep-rules
  A collection of my Semgrep rules
  ☆50Updated 2 years ago
• airman604 / cms2cmd
  ☆10Updated 6 years ago
• Static-Flow / BurpSuiteShareRequests
  This Burp Suite extension enables the generation of shareable links to specific requests which other Burp Suite users can import.
  ☆12Updated 3 years ago
• Matir / webborer
  WebBorer is a directory-enumeration tool written in Go.
  ☆44Updated 2 years ago
• semgrep / semgrep-docs
  Documentation of Semgrep: a fast, open-source, static analysis tool.
  ☆43Updated last week
• 0xSobky / Regaxor
  A regular expression fuzzer.
  ☆45Updated 7 years ago
• morganc3 / KOAuth
  OAuth 2.0 Dynamic Security Scanner
  ☆33Updated 4 years ago
• cosmoscrew / gomassdns
  A better dns bruteforcer written in golang
  ☆13Updated 6 years ago
• nccgroup / wstalker
  WStalker: an easy proxy
  ☆25Updated 5 years ago
• nccgroup / encoderama
  String or worldlist encoder for use in fuzzing or web application testing
  ☆19Updated 6 years ago
• pry0cc / jf
  A wrapper around jq, to help you parse jq output!
  ☆30Updated 5 years ago
• nightwatchcybersecurity / airflowscan
  Checklist and tools for increasing security of Apache Airflow
  ☆32Updated 4 years ago