lambdasec / autogrepLinks
Autogrep automates Semgrep rule generation and filtering by using LLMs to analyze vulnerability patches, enabling automatic creation of high-quality security rules without manual curation.
β49Updated 7 months ago
Alternatives and similar repositories for autogrep
Users that are interested in autogrep are comparing it to the libraries listed below
Sorting:
- π§ͺ Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.β41Updated 9 months ago
- XBOW Validation Benchmarksβ246Updated 3 months ago
- A very simple open source implementation of Google's Project Naptimeβ169Updated 6 months ago
- atom is a novel intermediate representation for applications and a standalone tool that is powered by chen.β73Updated last week
- A comprehensive security scanner for Model Context Protocol (MCP) servers that detects vulnerabilities and security issues in your MCP seβ¦β99Updated 3 weeks ago
- Focused malicious code detection ruleset, with a high protection-to-noise ratioβ127Updated 7 months ago
- Top 10 for Agentic AI (AI Agent Security) serves as the core for OWASP and CSA Red teaming workβ139Updated 3 months ago
- β88Updated 8 months ago
- Manager of third-party sources of Semgrep rules πβ88Updated last year
- Automated web vulnerability scanning with LLM agentsβ355Updated 3 months ago
- β99Updated this week
- https://arxiv.org/abs/2412.02776β62Updated 10 months ago
- future-proof vulnerability detection benchmark, based on CVEs in open-source reposβ60Updated last week
- We present MAPTA, a multi-agent system for autonomous web application security assessment that combines large language model orchestratioβ¦β65Updated last month
- An open-source dataset of malicious software packages found in the wild, 100% vetted by humans.β239Updated this week
- A comprehensive list of software composition analysis tools.β156Updated last year
- A collection of permissively licensed Semgrep rules.β15Updated last year
- Secure Code Review AI Agent (SeCoRA) - AI SASTβ51Updated 8 months ago
- A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling,β¦β137Updated last year
- Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.1, purl, and versβ¦β129Updated last month
- A collection of Semgrep rules which followed security guidelines for .NET and Java.β23Updated 4 years ago
- LLM | Security | Operations in one github repo with good links and pictures.β57Updated 9 months ago
- πA cutting edge context aware GraphQL API fuzzing tool!β148Updated last month
- SecureMCP is a security auditing tool designed to detect vulnerabilities and misconfigurations in applications using the [Model Context Pβ¦β133Updated 4 months ago
- A powerful tool that leverages AI to automatically generate comprehensive security documentation for your projectsβ92Updated last month
- Delving into the Realm of LLM Security: An Exploration of Offensive and Defensive Tools, Unveiling Their Present Capabilities.β165Updated last year
- Project Mantis: Hacking Back the AI-Hacker; Prompt Injection as a Defense Against LLM-driven Cyberattacksβ86Updated 4 months ago
- A flexible framework for security teams to build and deploy AI-powered workflows that complement their existing security operations.β127Updated this week
- A security tool that detects malicious packages from external vulnerability feeds and searches for them in your package registries or artβ¦β52Updated last week
- Code snippets to reproduce MCP tool poisoning attacks.β181Updated 5 months ago