lambdasec / autogrepLinks
Autogrep automates Semgrep rule generation and filtering by using LLMs to analyze vulnerability patches, enabling automatic creation of high-quality security rules without manual curation.
β72Updated 11 months ago
Alternatives and similar repositories for autogrep
Users that are interested in autogrep are comparing it to the libraries listed below
Sorting:
- A very simple open source implementation of Google's Project Naptimeβ184Updated 10 months ago
- π§ͺ Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.β42Updated last year
- Focused malicious code detection ruleset, with a high protection-to-noise ratioβ142Updated 11 months ago
- Metis is an open-source, AI-driven tool for deep security code reviewβ465Updated this week
- atom is a novel intermediate representation for applications and a standalone tool that is powered by chen.β84Updated last week
- We present MAPTA, a multi-agent system for autonomous web application security assessment that combines large language model orchestratioβ¦β93Updated 5 months ago
- Manager of 14 third-party sources comprising approximately 4,000 Semgrep rules πβ98Updated last month
- A collection of Semgrep rules which followed security guidelines for .NET and Java.β23Updated 4 years ago
- SAST + LLM Interprocedural Context Extractorβ178Updated 3 months ago
- AI agent for autonomous cyber operationsβ468Updated 2 months ago
- LLM | Security | Operations in one github repo with good links and pictures.β88Updated this week
- GitHub Security Lab Taskflow Agentβ66Updated this week
- Data about all known supply-chain attacks through historyβ63Updated 8 months ago
- β101Updated this week
- https://arxiv.org/abs/2412.02776β67Updated last year
- A comprehensive security scanner for Model Context Protocol (MCP) servers that detects vulnerabilities and security issues in your MCP seβ¦β121Updated last month
- A comprehensive list of software composition analysis tools.β162Updated 3 months ago
- πA cutting edge context aware GraphQL API fuzzing tool!β156Updated this week
- A growing collection of MCP servers bringing offensive security tools to AI assistants. Nmap, Ghidra, Nuclei, SQLMap, Hashcat and more.β354Updated last week
- AI-powered workflow automation and AI Agents platform for AppSec, Fuzzing & Offensive Security. Automate vulnerability discovery with intβ¦β696Updated last week
- tool designed for identifying vulnerabilities in open source codebases at scale. It can gather and filter on key repository metrics such β¦β235Updated last year
- Prototype of Full Agentic Application Security Testing, FAAST = SAST + DAST + LLM agentsβ67Updated 9 months ago
- A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling,β¦β141Updated 2 years ago
- Trail of Bits Testing Handbook - appsec.guideβ92Updated this week
- β238Updated last month
- Secrets scanner that understands codeβ165Updated 2 months ago
- Community reconstruction of the legacy JSON NVD Data Feeds. This project uses and redistributes data from the NVD API but is neither endoβ¦β202Updated this week
- A collection of permissively licensed Semgrep rules.β22Updated last year
- Automatic Exploit Generation with LLMsβ499Updated last week
- ChainReactor is a research project that leverages AI planning to discover exploitation chains for privilege escalation on Unix systems. Tβ¦β58Updated last year