ligurio / semgrep-rulesLinks
semgrep rules for flakiness, missed error handling, Lua antipatterns and pitfalls.
☆14Updated 7 months ago
Alternatives and similar repositories for semgrep-rules
Users that are interested in semgrep-rules are comparing it to the libraries listed below
Sorting:
- Creates CycloneDX Software Bill-of-Materials (SBOM) from Go projects. So you can use it with DependencyTrack to monitor security issues i…☆21Updated 5 years ago
- 🚰 Static taint analysis for Go programs.☆64Updated last month
- ☆27Updated 3 weeks ago
- Automatic fuzz targets generation for Golang packages☆53Updated 4 months ago
- egrets monitors egress☆46Updated 5 years ago
- ☆29Updated 4 months ago
- Go library for SARIF - Static Analysis Results Interchange Format☆78Updated 2 weeks ago
- Detect compiler names and versions from ELF files☆27Updated 3 weeks ago
- Artifacts of the USENIX Security 2022 paper "Spoki: Unveiling a New Wave of Scanners through a Reactive Network Telescope"☆17Updated 5 months ago
- Old coverage-guided fuzz testing for fxamacker/cbor. A newer version is used by fxamacker/cbor for fuzzing.☆11Updated last year
- A place to systematically store software bill of materials (SBOM) documents.☆46Updated 2 years ago
- BPF based FIM solution☆42Updated 2 years ago
- efficient linux security monitoring☆26Updated 6 years ago
- Find binary files not installed through package manager☆11Updated last year
- Function callpath mapping analysis tool for Go☆33Updated 3 months ago
- Vulnerability Scanner for Detecting Publicly Disclosed Vulnerabilities in Application Dependencies☆23Updated 5 years ago
- Low-effort reachability analysis for third-party code vulnerabilities.☆20Updated last year
- Ultimate Benchmark for Container Image Scanners☆12Updated 4 years ago
- A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…☆75Updated last month
- eBPF based syscalls, files and network events tracing framework☆92Updated 4 years ago
- A Security Scanner for Go☆26Updated 6 years ago
- OWASP Dependency Track API client for intergration into CI/CD pipeline☆53Updated 10 months ago
- Scan pypi for typosquatting☆36Updated 2 years ago
- Docker Secure Computing Profile Generator☆48Updated 3 years ago
- Wildcard DNS with few features☆13Updated last month
- ☆15Updated 5 years ago
- An query language and interactive tooling to work with SBOM data.☆14Updated 8 months ago
- ☆27Updated 8 years ago
- ☆29Updated last year
- ☆22Updated 3 years ago