lambdasec / autogrepLinks
Autogrep automates Semgrep rule generation and filtering by using LLMs to analyze vulnerability patches, enabling automatic creation of high-quality security rules without manual curation.
☆38Updated 5 months ago
Alternatives and similar repositories for autogrep
Users that are interested in autogrep are comparing it to the libraries listed below
Sorting:
- A collection of permissively licensed Semgrep rules.☆12Updated last year
- XBOW Validation Benchmarks☆204Updated last month
- Automated web vulnerability scanning with LLM agents☆343Updated last month
- 🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.☆40Updated 8 months ago
- A very simple open source implementation of Google's Project Naptime☆163Updated 4 months ago
- atom is a novel intermediate representation for applications and a standalone tool that is powered by chen.☆71Updated last week
- ☆81Updated 6 months ago
- ☆246Updated this week
- A CLI tool for threat modeling and visualizing AI agents built using popular frameworks like LangGraph, AutoGen, CrewAI, and more.☆225Updated 3 months ago
- ☆93Updated 2 months ago
- A web CTF for training developers in bug hunting and secure coding!☆99Updated 6 months ago
- A comprehensive list of software composition analysis tools.☆151Updated last year
- Top 10 for Agentic AI (AI Agent Security) serves as the core for OWASP and CSA Red teaming work☆125Updated 2 months ago
- Delving into the Realm of LLM Security: An Exploration of Offensive and Defensive Tools, Unveiling Their Present Capabilities.☆164Updated last year
- ☆139Updated 2 months ago
- Secure Code Review AI Agent (SeCoRA) - AI SAST☆48Updated 6 months ago
- 🔍A cutting edge context aware GraphQL API fuzzing tool!☆143Updated 2 weeks ago
- 🧠 LLMFuzzer - Fuzzing Framework for Large Language Models 🧠 LLMFuzzer is the first open-source fuzzing framework specifically designed …☆303Updated last year
- Focused malicious code detection ruleset, with a high protection-to-noise ratio☆123Updated 5 months ago
- Semgrep queries developed by Trail of Bits.☆423Updated 3 weeks ago
- Manager of third-party sources of Semgrep rules 🗂☆87Updated last year
- Vanir is a source code-based static analysis tool that automatically identifies the list of missing security patches in the target system…☆339Updated last month
- future-proof vulnerability detection benchmark, based on CVEs in open-source repos☆59Updated this week
- MCP for Security: A collection of Model Context Protocol servers for popular security tools like SQLMap, FFUF, NMAP, Masscan and more. In…☆324Updated 2 weeks ago
- SecureMCP is a security auditing tool designed to detect vulnerabilities and misconfigurations in applications using the [Model Context P…☆111Updated 2 months ago
- An open-source dataset of malicious software packages found in the wild, 100% vetted by humans.☆216Updated this week
- A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling,…☆136Updated last year
- Code snippets to reproduce MCP tool poisoning attacks.☆173Updated 4 months ago
- 🤖 A GitHub action that leverages fabric patterns through an agent-based approach☆30Updated 7 months ago
- Dropbox LLM Security research code and results☆232Updated last year