ligurio / semgrep-rules

Related projects: ⓘ

• kondukto-io / semgrep-rules
  Custom semgrep rules registry
  ☆12Updated 2 years ago
• vmnguyen / semgrep-rules
  My custom semgrep rules
  ☆18Updated 4 years ago
• owenrumney / go-sarif
  Go library for sarif - Static Analysis Results Interchange Format
  ☆65Updated last month
• ancat / egrets
  egrets monitors egress
  ☆45Updated 4 years ago
• catenacyber / ngolo-fuzzing
  Automatic fuzz targets generation for Golang packages
  ☆51Updated 2 months ago
• picatz / taint
  🚰 Static taint analysis for Go programs.
  ☆51Updated last month
• semgrep / semgrep-vscode
  Semgrep extension for Visual Studio Code
  ☆53Updated last week
• AdamKorcz / go-118-fuzz-build
  ☆22Updated last week
• lookfwd / getting-started-clusterfuzz-local-in-aws
  ☆15Updated 4 years ago
• ancat / hypercam
  A tool for interacting with live processes/containers
  ☆21Updated 2 years ago
• trailofbits / codeql-queries
  CodeQL queries developed by Trail of Bits
  ☆72Updated 3 weeks ago
• jlauinger / go-geiger
  Static code analysis tool to find unsafe usages in Go packages and their dependencies
  ☆40Updated 4 years ago
• uchi-mata / dostainer
  ☆29Updated 3 years ago
• ossf / package-feeds
  Feed parsing for language package manager updates
  ☆71Updated last week
• hex0punk / wally
  Function callpath mapping analysis tool for Go
  ☆27Updated last week
• awslabs / one-line-scan
  With this tool, projects can be compiled easily for fuzzing with AFL or for static code analysis with tools like CBMC. One-line-scan hook…
  ☆20Updated last year
• nccgroup / ConMachi
  Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container
  ☆84Updated 5 years ago
• buglloc / rip
  Wildcard DNS with few features
  ☆12Updated last month
• nccgroup / insject
  insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.
  ☆49Updated 2 years ago
• duo-labs / narrow
  Low-effort reachability analysis for third-party code vulnerabilities.
  ☆19Updated last year
• dirtyharrycallahan / pystrace
  ☆27Updated 8 years ago
• inetrg / spoki
  Artifacts of the USENIX Security 2022 paper "Spoki: Unveiling a New Wave of Scanners through a Reactive Network Telescope"
  ☆17Updated last year
• Cybergenik / hopper
  Coverage-Guided Greybox Distributed Fuzzer
  ☆127Updated last month
• theparanoids / yfuzz
  A project to run fuzzing jobs at scale with Kubernetes.
  ☆145Updated 3 years ago
• in-toto / supply-chain-compromises
  ☆22Updated 2 years ago
• antitree / syscall2seccomp
  Build custom Docker seccomp profiles for containers by finding syscalls it uses.
  ☆89Updated 4 years ago
• trailofbits / ebpfpub
  ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.
  ☆113Updated last year
• twistlock / sa-hunter
  Correlates serviceaccounts and pods to the permissions granted to them via rolebindings and clusterrolesbindings.
  ☆34Updated 2 years ago
• trailofbits / go-fuzz-utils
  ☆19Updated 3 weeks ago
• joernio / query-database
  Default query sets for Joern
  ☆24Updated 2 years ago