Alternatives and similar repositories for semgrep-rules

Users that are interested in semgrep-rules are comparing it to the libraries listed below

• picatz / taint
  🚰 Static taint analysis for Go programs.
  ☆65Updated 2 weeks ago
• catenacyber / ngolo-fuzzing
  Automatic fuzz targets generation for Golang packages
  ☆53Updated 5 months ago
• kondukto-io / semgrep-rules
  Custom semgrep rules registry
  ☆12Updated 2 years ago
• owenrumney / go-sarif
  Go library for SARIF - Static Analysis Results Interchange Format
  ☆79Updated last week
• fxamacker / cbor-fuzz
  Old coverage-guided fuzz testing for fxamacker/cbor. A newer version is used by fxamacker/cbor for fuzzing.
  ☆11Updated last year
• uchi-mata / dostainer
  ☆29Updated 4 months ago
• chainguard-dev / bom-shelter
  A place to systematically store software bill of materials (SBOM) documents.
  ☆46Updated 2 years ago
• hex0punk / wally
  Function callpath mapping analysis tool for Go
  ☆34Updated 3 months ago
• gravitational / rbac-linter
  ☆29Updated last year
• IQTLabs / pypi-scan
  Scan pypi for typosquatting
  ☆36Updated 2 years ago
• ancat / egrets
  egrets monitors egress
  ☆46Updated 5 years ago
• duo-labs / narrow
  Low-effort reachability analysis for third-party code vulnerabilities.
  ☆20Updated last year
• xyproto / ainur
  Detect compiler names and versions from ELF files
  ☆27Updated last month
• knqyf263 / remic
  Vulnerability Scanner for Detecting Publicly Disclosed Vulnerabilities in Application Dependencies
  ☆23Updated 5 years ago
• in-toto / supply-chain-compromises
  ☆22Updated 3 years ago
• blacktop / seccomp-gen
  Docker Secure Computing Profile Generator
  ☆48Updated 3 years ago
• lookfwd / getting-started-clusterfuzz-local-in-aws
  ☆15Updated 5 years ago
• doyensec / safeurl
  A Server Side Request Forgery (SSRF) protection library. Made with 🖤 by Doyensec LLC.
  ☆102Updated 3 weeks ago
• semgrep / semgrep-vscode
  Semgrep extension for Visual Studio Code
  ☆63Updated this week
• jtmelton / semgrep-idea-plugin
  ☆16Updated last year
• hannob / pypi-bad
  Bad packages from the pypi repository
  ☆9Updated 6 years ago
• dvyukov / go-fuzz-corpus
  Corpus for github.com/dvyukov/go-fuzz examples
  ☆199Updated 4 years ago
• ozonru / cyclonedx-go
  Creates CycloneDX Software Bill-of-Materials (SBOM) from Go projects. So you can use it with DependencyTrack to monitor security issues i…
  ☆21Updated 5 years ago
• trailofbits / go-fuzz-utils
  ☆20Updated 9 months ago
• ancat / hypercam
  A tool for interacting with live processes/containers
  ☆22Updated 2 years ago
• mdempsky / go114-fuzz-build
  ☆20Updated 2 years ago
• semgrep / semgrep-docs
  Documentation of Semgrep: a fast, open-source, static analysis tool.
  ☆41Updated last week
• listendev / lstn
  A CLI tool to analyze the behavior of your dependencies using listen.dev
  ☆12Updated last week
• trailofbits / codeql-queries
  CodeQL queries developed by Trail of Bits
  ☆101Updated 2 weeks ago
• bookingcom / bpfink
  BPF based FIM solution
  ☆42Updated 2 years ago