π§ͺ Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.
β42Dec 12, 2024Updated last year
Alternatives and similar repositories for vulncov
Users that are interested in vulncov are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Proof of concept for an anti-phishing browser plugin, working by comparing pages screenshots with perceptual hashing algorithms.β10Apr 3, 2022Updated 4 years ago
- Semgrep-based Policy Controller for Kubernetesβ47Apr 4, 2025Updated last year
- β72Oct 24, 2025Updated 6 months ago
- An IAM Simulator that outputs detailed explains of how a request was evaluated.β102Updated this week
- β40Aug 2, 2024Updated last year
- Managed Database hosting by DigitalOcean β’ AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- A tool for secrets management, encryption as a service, and privileged access managementβ12Jul 17, 2025Updated 9 months ago
- Fast and easy to use CLI-based file encryption program π¦β13Oct 12, 2025Updated 6 months ago
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.β41Dec 12, 2023Updated 2 years ago
- Build a CVE library with aggregated CISA, EPSS and CVSS dataβ29Sep 27, 2023Updated 2 years ago
- Audit your GitHub Actions workflow runs to see exactly which Actions were downloadedβ88Apr 24, 2026Updated 2 weeks ago
- The official website for The Discord Analytics for Risks & Threats Project.β23Dec 29, 2025Updated 4 months ago
- AWS IAM Username Enumerator and Password Spraying Tool in Python3β89Dec 7, 2025Updated 5 months ago
- Provide some tips to handle Injection into application code (OWASP TOP 10 - A1).β10Nov 11, 2020Updated 5 years ago
- Burp Suite extension for testing Passkey systems.β75Apr 1, 2025Updated last year
- Proton VPN Special Offer - Get 70% off β’ AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- Secure Code Review AI Agent (SeCoRA) - AI SASTβ56Jan 29, 2025Updated last year
- Security tool against dependency typosquatting attacksβ56Apr 27, 2026Updated last week
- πΉ Python project to bruteforce Apache Tomcat manager login with known-default credentialsβ99Mar 12, 2024Updated 2 years ago
- @DisCo is a graph based datastore designed to minimize reverse engineering efforts.β12Jan 21, 2021Updated 5 years ago
- β11Dec 9, 2025Updated 4 months ago
- Proof-of-concept modular implant platform leveraging v8β55Mar 4, 2025Updated last year
- This terraform provider can be used to get remote code execution by injecting a dummy resource in a writeable state file.β63Jan 25, 2025Updated last year
- A very simple open source implementation of Google's Project Naptimeβ187Mar 27, 2025Updated last year
- Tooling backed by an LLM for performing natural language searches against compiled target binaries. Search for encryption code, password β¦β166Apr 10, 2024Updated 2 years ago
- 1-Click AI Models by DigitalOcean Gradient β’ AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- ChainReactor is a research project that leverages AI planning to discover exploitation chains for privilege escalation on Unix systems. Tβ¦β61Nov 3, 2024Updated last year
- A collection of scripts based on libclang for extracting API information from interpretersβ25Jul 10, 2012Updated 13 years ago
- Unauthenticated enumeration of AWS IAM Roles.β26Apr 18, 2026Updated 3 weeks ago
- Tool created for Red Team to test default credentials on SSH and WinRM and then execute scripts with those credentials before the passworβ¦β42May 7, 2023Updated 3 years ago
- Crashbench is a LLM benchmark to measure bug-finding and reporting capabilities of LLMsβ14Mar 8, 2026Updated 2 months ago
- Static analysis tool to Identify and Fix GitHub Actions prone to SupplyβChain Risksβ14Apr 20, 2026Updated 2 weeks ago
- Official code for the paper entitled "Toward Intelligent and Secure Cloud: Large Language Model Empowered Proactive Defense"β16Apr 10, 2025Updated last year
- A collection of permissively licensed Semgrep rules.β22Jul 5, 2024Updated last year
- β53Feb 4, 2025Updated last year
- Deploy on Railway without the complexity - Free Credits Offer β’ AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Markdown internal & external links validation library and CLIβ11Jul 16, 2019Updated 6 years ago
- β76Oct 18, 2025Updated 6 months ago
- β19Dec 2, 2024Updated last year
- Funny Fuzzing Wordlistβ14Jun 14, 2022Updated 3 years ago
- A tool to uncover undocumented APIs from the AWS Console.β121Mar 16, 2026Updated last month
- Collection of Semgrep rules for security analysisβ10Mar 30, 2024Updated 2 years ago
- A fast, customizable service detection tool powered by a flexible fingerprint system. It helps you identify services, APIs, and network cβ¦β44Apr 23, 2026Updated 2 weeks ago