lambdasec / autogrepLinks
Autogrep automates Semgrep rule generation and filtering by using LLMs to analyze vulnerability patches, enabling automatic creation of high-quality security rules without manual curation.
☆53Updated 8 months ago
Alternatives and similar repositories for autogrep
Users that are interested in autogrep are comparing it to the libraries listed below
Sorting:
- atom is a novel intermediate representation for applications and a standalone tool that is powered by chen.☆73Updated last week
- A very simple open source implementation of Google's Project Naptime☆173Updated 7 months ago
- SAST + LLM Interprocedural Context Extractor☆139Updated 2 weeks ago
- 🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.☆41Updated 11 months ago
- AI agent for autonomous cyber operations☆367Updated this week
- A comprehensive list of software composition analysis tools.☆157Updated 3 weeks ago
- ☆100Updated 9 months ago
- XBOW Validation Benchmarks☆323Updated 5 months ago
- Manager of third-party sources of Semgrep rules 🗂☆90Updated last year
- A collection of permissively licensed Semgrep rules.☆18Updated last year
- An open-source security suite aiming to combine structural code analysis with AI-powered vulnerability detection. Built for advanced stru…☆81Updated this week
- Metis is an open-source, AI-driven tool for deep security code review☆83Updated this week
- Focused malicious code detection ruleset, with a high protection-to-noise ratio☆127Updated 8 months ago
- future-proof vulnerability detection benchmark, based on CVEs in open-source repos☆60Updated last week
- Data about all known supply-chain attacks through history☆61Updated 5 months ago
- A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling,…☆138Updated last year
- Automated web vulnerability scanning with LLM agents☆362Updated 4 months ago
- Semgrep queries developed by Trail of Bits.☆451Updated this week
- A collection of Semgrep rules which followed security guidelines for .NET and Java.☆24Updated 4 years ago
- A comprehensive security scanner for Model Context Protocol (MCP) servers that detects vulnerabilities and security issues in your MCP se…☆107Updated 3 weeks ago
- Trail of Bits Testing Handbook☆82Updated last week
- Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.1, purl, and vers…☆129Updated 3 months ago
- ☆100Updated last month
- https://arxiv.org/abs/2412.02776☆66Updated 11 months ago
- Secure Code Review AI Agent (SeCoRA) - AI SAST☆53Updated 9 months ago
- Community reconstruction of the legacy JSON NVD Data Feeds. This project uses and redistributes data from the NVD API but is neither endo…☆183Updated last week
- 🔍A cutting edge context aware GraphQL API fuzzing tool!☆154Updated 2 months ago
- OSV-SCALIBR: A library for Software Composition Analysis☆529Updated last week
- Code Hierarchy Exploration Net (chen)☆21Updated last week
- A security tool that detects malicious packages from external vulnerability feeds and searches for them in your package registries or art…☆65Updated last week