mllamazares / vulncov
π§ͺ Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.
β38Updated 2 months ago
Alternatives and similar repositories for vulncov:
Users that are interested in vulncov are comparing it to the libraries listed below
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.β40Updated last year
- Security tool against dependency typosquatting attacksβ39Updated last week
- Semgrep-based Policy Controller for Kubernetesβ46Updated this week
- EZGHSA is a command-line tool for summarizing and filtering vulnerability alerts on Github repositories.β35Updated last month
- Nuclei plugins to audit Chrome extensionsβ63Updated 7 months ago
- β109Updated last year
- boostsecurityio/lotpβ112Updated this week
- A small tool to help developers understand a huge set of security requirements from appsec teamsβ45Updated 2 years ago
- Manager of third-party sources of Semgrep rules πβ78Updated 6 months ago
- truffleproc β hunt secrets in process memory (TruffleHog & gdb mashup)β114Updated last year
- Create notes during a security code review in VSCode π Import your favorite SAST tool findings π οΈ and collaborate with others π€β132Updated last year
- A tool to uncover undocumented APIs from the AWS Console.β95Updated 3 months ago
- Protect against subdomain takeoverβ92Updated 8 months ago
- β62Updated 3 weeks ago
- This tool analyzes a given Gitlab repository and searches for dangling or force-pushed commits containing potential secret or interestingβ¦β45Updated 6 months ago
- An implementation of infrastructure-as-code scanning using dynamic tooling.