🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.
☆42Dec 12, 2024Updated last year
Alternatives and similar repositories for vulncov
Users that are interested in vulncov are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Semgrep-based Policy Controller for Kubernetes☆47Apr 4, 2025Updated last year
- A collection of various scripts and automations to simplify Checkmarx SAST and IAST setup and use☆14Aug 30, 2018Updated 7 years ago
- ☆72Oct 24, 2025Updated 7 months ago
- An IAM Simulator that outputs detailed explains of how a request was evaluated.☆102Jun 6, 2026Updated last week
- ☆40Aug 2, 2024Updated last year
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Fast and easy to use CLI-based file encryption program �📦☆13Oct 12, 2025Updated 8 months ago
- frida-codeshare-scripts.collection of useful FRIDA scripts.A curated list of Frida resources.纯实用frida脚本收集,脚本全网最全.不定时同步更新.☆112Mar 12, 2026Updated 3 months ago
- Additional active scan checks for BURP☆28Oct 3, 2024Updated last year
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆41Dec 12, 2023Updated 2 years ago
- Low-effort reachability analysis for third-party code vulnerabilities.☆22Jul 11, 2023Updated 2 years ago
- Build a CVE library with aggregated CISA, EPSS and CVSS data☆29Sep 27, 2023Updated 2 years ago
- The official website for The Discord Analytics for Risks & Threats Project.☆23Dec 29, 2025Updated 5 months ago
- AWS IAM Username Enumerator and Password Spraying Tool in Python3☆91Dec 7, 2025Updated 6 months ago
- Template Go app repo with local test/lint/build/vulnerability check workflow, and on tag image test/build/release pipelines, with ko gene…☆104Apr 23, 2024Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Burp Suite extension for testing Passkey systems.☆76Apr 1, 2025Updated last year
- Secure Code Review AI Agent (SeCoRA) - AI SAST☆58Jan 29, 2025Updated last year
- Security tool against dependency typosquatting attacks☆55Jun 9, 2026Updated last week
- 😹 Python project to bruteforce Apache Tomcat manager login with known-default credentials☆97Mar 12, 2024Updated 2 years ago
- @DisCo is a graph based datastore designed to minimize reverse engineering efforts.☆12Jan 21, 2021Updated 5 years ago
- ☆14Jun 1, 2026Updated 2 weeks ago
- AcSecurity is a Python module designed to scan applications for common security vulnerabilities. It checks for hardcoded secrets, depende…☆16Aug 29, 2025Updated 9 months ago
- Proof-of-concept modular implant platform leveraging v8☆55Mar 4, 2025Updated last year
- This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.☆64Jan 25, 2025Updated last year
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- A very simple open source implementation of Google's Project Naptime☆187Mar 27, 2025Updated last year
- ChainReactor is a research project that leverages AI planning to discover exploitation chains for privilege escalation on Unix systems. T…☆61Nov 3, 2024Updated last year
- A collection of scripts based on libclang for extracting API information from interpreters☆25Jul 10, 2012Updated 13 years ago
- Unauthenticated enumeration of AWS IAM Roles.☆28Apr 18, 2026Updated 2 months ago
- Tool created for Red Team to test default credentials on SSH and WinRM and then execute scripts with those credentials before the passwor…☆41May 7, 2023Updated 3 years ago
- Crashbench is a LLM benchmark to measure bug-finding and reporting capabilities of LLMs☆14Mar 8, 2026Updated 3 months ago
- Official code for the paper entitled "Toward Intelligent and Secure Cloud: Large Language Model Empowered Proactive Defense"☆16Apr 10, 2025Updated last year
- A collection of permissively licensed Semgrep rules.☆24Jul 5, 2024Updated last year
- ☆53Feb 4, 2025Updated last year
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- ☆77Oct 18, 2025Updated 8 months ago
- Burp Suite Pro extension☆11May 26, 2017Updated 9 years ago
- ☆19Dec 2, 2024Updated last year
- ☆14Mar 6, 2023Updated 3 years ago
- Funny Fuzzing Wordlist☆14Jun 14, 2022Updated 4 years ago
- A tool to uncover undocumented APIs from the AWS Console.☆120Mar 16, 2026Updated 3 months ago
- Collection of Semgrep rules for security analysis☆10Mar 30, 2024Updated 2 years ago