lambdasec / autogrepLinks
Autogrep automates Semgrep rule generation and filtering by using LLMs to analyze vulnerability patches, enabling automatic creation of high-quality security rules without manual curation.
☆34Updated 3 months ago
Alternatives and similar repositories for autogrep
Users that are interested in autogrep are comparing it to the libraries listed below
Sorting:
- XBOW Validation Benchmarks☆93Updated last week
- A collection of permissively licensed Semgrep rules.☆12Updated 11 months ago
- Manager of third-party sources of Semgrep rules 🗂☆86Updated 10 months ago
- A MCP server for using Semgrep to scan code for security vulnerabilities.☆175Updated this week
- atom is a novel intermediate representation for applications and a standalone tool that is powered by chen.☆66Updated this week
- A research project to add some brrrrrr to Burp☆173Updated 3 months ago
- 🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.☆39Updated 5 months ago
- ☆77Updated 3 weeks ago
- A powerful tool that leverages AI to automatically generate comprehensive security documentation for your projects☆80Updated last month
- A web CTF for training developers in bug hunting and secure coding!☆99Updated 4 months ago
- A collection of Semgrep rules which followed security guidelines for .NET and Java.☆23Updated 3 years ago
- Focused malicious code detection ruleset, with a high protection-to-noise ratio☆120Updated 3 months ago
- tool designed for identifying vulnerabilities in open source codebases at scale. It can gather and filter on key repository metrics such …☆227Updated 4 months ago
- A very simple open source implementation of Google's Project Naptime☆151Updated 2 months ago
- 🔍A cutting edge context aware GraphQL API fuzzing tool!☆141Updated this week
- Archive Alchemist is a tool for creating specially crafted archives to test extraction vulnerabilities.☆115Updated this week
- Identify hardcoded secrets in static structured text (version 2)☆91Updated 4 months ago
- ChainReactor is a research project that leverages AI planning to discover exploitation chains for privilege escalation on Unix systems. T…☆47Updated 7 months ago
- Tool to detect and monitor GitHub org users' public repositories for secrets and sensitive files☆218Updated last month
- Automated web vulnerability scanning with LLM agents☆319Updated this week
- Secrets scanner that understands code☆142Updated 3 months ago
- Delving into the Realm of LLM Security: An Exploration of Offensive and Defensive Tools, Unveiling Their Present Capabilities.☆163Updated last year
- Semgrep queries developed by Trail of Bits.☆406Updated this week
- FastCVE: A Dockerized CVE search tool with API and CLI support for security vulnerability queries.☆52Updated last week
- A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling,…☆135Updated last year
- https://arxiv.org/abs/2412.02776☆54Updated 6 months ago
- AIGoat: A deliberately Vulnerable AI Infrastructure. Learn AI security through solving our challenges.☆235Updated last month
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams☆105Updated 4 months ago
- Learn AI security through a series of vulnerable LLM CTF challenges. No sign ups, no cloud fees, run everything locally on your system.☆287Updated 9 months ago
- Secrets scanner that understands code☆190Updated last year