lambdasec / autogrepLinks
Autogrep automates Semgrep rule generation and filtering by using LLMs to analyze vulnerability patches, enabling automatic creation of high-quality security rules without manual curation.
☆36Updated 4 months ago
Alternatives and similar repositories for autogrep
Users that are interested in autogrep are comparing it to the libraries listed below
Sorting:
- A collection of permissively licensed Semgrep rules.☆12Updated 11 months ago
- A MCP server for using Semgrep to scan code for security vulnerabilities.☆203Updated this week
- XBOW Validation Benchmarks☆104Updated last week
- atom is a novel intermediate representation for applications and a standalone tool that is powered by chen.☆68Updated 2 weeks ago
- A very simple open source implementation of Google's Project Naptime☆155Updated 3 months ago
- Manager of third-party sources of Semgrep rules 🗂☆87Updated 11 months ago
- 🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.☆39Updated 6 months ago
- A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling,…☆135Updated last year
- ☆71Updated 5 months ago
- Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.1, purl, and vers…☆120Updated 2 weeks ago
- Focused malicious code detection ruleset, with a high protection-to-noise ratio☆120Updated 4 months ago
- A powerful tool that leverages AI to automatically generate comprehensive security documentation for your projects☆89Updated last month
- future-proof vulnerability detection benchmark, based on CVEs in open-source repos☆56Updated last week
- Automated web vulnerability scanning with LLM agents☆328Updated last week
- Learn AI security through a series of vulnerable LLM CTF challenges. No sign ups, no cloud fees, run everything locally on your system.☆289Updated 10 months ago
- ☆79Updated last month
- A research project to add some brrrrrr to Burp☆180Updated 4 months ago
- A collection of Semgrep rules which followed security guidelines for .NET and Java.☆23Updated 3 years ago
- Delving into the Realm of LLM Security: An Exploration of Offensive and Defensive Tools, Unveiling Their Present Capabilities.☆163Updated last year
- CyberGym is a large-scale, high-quality cybersecurity evaluation framework designed to rigorously assess the capabilities of AI agents on…☆30Updated last week
- LLM | Security | Operations in one github repo with good links and pictures.☆31Updated 5 months ago
- AIGoat: A deliberately Vulnerable AI Infrastructure. Learn AI security through solving our challenges.☆235Updated 2 months ago
- Top 10 for Agentic AI (AI Agent Security) serves as the core for OWASP and CSA Red teaming work☆113Updated 2 weeks ago
- ChainReactor is a research project that leverages AI planning to discover exploitation chains for privilege escalation on Unix systems. T…☆48Updated 7 months ago
- An open-source dataset of malicious software packages found in the wild, 100% vetted by humans.☆212Updated this week
- CodeQL queries developed by Trail of Bits☆101Updated 2 weeks ago
- Secure Code Review AI Agent (SeCoRA) - AI SAST☆48Updated 4 months ago
- Secure Jupyter Notebooks and Experimentation Environment☆76Updated 4 months ago
- ☆27Updated 5 months ago
- 🔍A cutting edge context aware GraphQL API fuzzing tool!☆141Updated last week