ligurio / semgrep-rules
semgrep rules for flakiness, missed error handling, Lua antipatterns and pitfalls.
☆13Updated last month
Related projects: ⓘ
- Custom semgrep rules registry☆12Updated 2 years ago
- My custom semgrep rules☆18Updated 4 years ago
- Go library for sarif - Static Analysis Results Interchange Format☆65Updated last month
- egrets monitors egress☆45Updated 4 years ago
- Automatic fuzz targets generation for Golang packages☆51Updated 2 months ago
- 🚰 Static taint analysis for Go programs.☆51Updated last month
- Semgrep extension for Visual Studio Code☆53Updated last week
- ☆22Updated last week
- ☆15Updated 4 years ago
- A tool for interacting with live processes/containers☆21Updated 2 years ago
- CodeQL queries developed by Trail of Bits☆72Updated 3 weeks ago
- Static code analysis tool to find unsafe usages in Go packages and their dependencies☆40Updated 4 years ago
- ☆29Updated 3 years ago
- Feed parsing for language package manager updates☆71Updated last week
- Function callpath mapping analysis tool for Go☆27Updated last week
- With this tool, projects can be compiled easily for fuzzing with AFL or for static code analysis with tools like CBMC. One-line-scan hook…☆20Updated last year
- Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container☆84Updated 5 years ago
- Wildcard DNS with few features☆12Updated last month
- insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.☆49Updated 2 years ago
- Low-effort reachability analysis for third-party code vulnerabilities.☆19Updated last year
- ☆27Updated 8 years ago
- Artifacts of the USENIX Security 2022 paper "Spoki: Unveiling a New Wave of Scanners through a Reactive Network Telescope"☆17Updated last year
- Coverage-Guided Greybox Distributed Fuzzer☆127Updated last month
- A project to run fuzzing jobs at scale with Kubernetes.☆145Updated 3 years ago
- ☆22Updated 2 years ago
- Build custom Docker seccomp profiles for containers by finding syscalls it uses.☆89Updated 4 years ago
- ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.☆113Updated last year
- Correlates serviceaccounts and pods to the permissions granted to them via rolebindings and clusterrolesbindings.☆34Updated 2 years ago
- ☆19Updated 3 weeks ago
- Default query sets for Joern☆24Updated 2 years ago