lambdasec / autogrepLinks
Autogrep automates Semgrep rule generation and filtering by using LLMs to analyze vulnerability patches, enabling automatic creation of high-quality security rules without manual curation.
β72Updated 11 months ago
Alternatives and similar repositories for autogrep
Users that are interested in autogrep are comparing it to the libraries listed below
Sorting:
- Metis is an open-source, AI-driven tool for deep security code reviewβ465Updated this week
- π§ͺ Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.β42Updated last year
- Manager of 14 third-party sources comprising approximately 4,000 Semgrep rules πβ98Updated last month
- A very simple open source implementation of Google's Project Naptimeβ184Updated 10 months ago
- A collection of Semgrep rules which followed security guidelines for .NET and Java.β23Updated 4 years ago
- SAST + LLM Interprocedural Context Extractorβ176Updated 3 months ago
- AI agent for autonomous cyber operationsβ468Updated 2 months ago
- https://arxiv.org/abs/2412.02776β67Updated last year
- β101Updated this week
- atom is a novel intermediate representation for applications and a standalone tool that is powered by chen.β84Updated this week
- We present MAPTA, a multi-agent system for autonomous web application security assessment that combines large language model orchestratioβ¦β93Updated 5 months ago
- Prototype of Full Agentic Application Security Testing, FAAST = SAST + DAST + LLM agentsβ67Updated 9 months ago
- Trail of Bits Testing Handbook - appsec.guideβ92Updated this week
- Focused malicious code detection ruleset, with a high protection-to-noise ratioβ142Updated 11 months ago
- πA cutting edge context aware GraphQL API fuzzing tool!β156Updated this week
- LLM | Security | Operations in one github repo with good links and pictures.β87Updated 2 weeks ago
- A comprehensive list of software composition analysis tools.β162Updated 3 months ago
- β187Updated last month
- Data about all known supply-chain attacks through historyβ63Updated 8 months ago
- FastCVE: A Dockerized CVE search tool with API and CLI support for security vulnerability queries.β60Updated last month
- A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling,β¦β139Updated 2 years ago
- A growing collection of MCP servers bringing offensive security tools to AI assistants. Nmap, Ghidra, Nuclei, SQLMap, Hashcat and more.β354Updated last week
- GitHub Security Lab Taskflow Agentβ66Updated this week
- future-proof vulnerability detection benchmark, based on CVEs in open-source reposβ63Updated this week
- Community reconstruction of the legacy JSON NVD Data Feeds. This project uses and redistributes data from the NVD API but is neither endoβ¦β202Updated this week
- AI-powered workflow automation and AI Agents platform for AppSec, Fuzzing & Offensive Security. Automate vulnerability discovery with intβ¦β696Updated last week
- XBOW Validation Benchmarksβ467Updated 7 months ago
- tool designed for identifying vulnerabilities in open source codebases at scale. It can gather and filter on key repository metrics such β¦β235Updated last year
- Automated web vulnerability scanning with LLM agentsβ446Updated 7 months ago
- Performing secure code review with LLMs (and vibe coding IDEs)β36Updated 6 months ago