Alternatives and similar repositories for codetotal

Users that are interested in codetotal are comparing it to the libraries listed below

• binareio / FastCVE
  FastCVE: A Dockerized CVE search tool with API and CLI support for security vulnerability queries.
  ☆52Updated last month
• mllamazares / vulncov
  🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.
  ☆39Updated 6 months ago
• doyensec / PoiEx
  🌐 Visualize and explore IaC ✒️ Create and share notes in VS Code 🤝 Sync notes and findings in real-time with friends
  ☆73Updated last year
• iosifache / semgrep-rules-manager
  Manager of third-party sources of Semgrep rules 🗂
  ☆87Updated 11 months ago
• nccgroup / ccs
  ☆111Updated 2 years ago
• nullenc0de / ChromeAudit
  Nuclei plugins to audit Chrome extensions
  ☆65Updated 11 months ago
• apiiro / combobulator
  Dependency Combobulator
  ☆93Updated last year
• boostsecurityio / lotp
  boostsecurityio/lotp
  ☆127Updated 2 months ago
• gand3lf / semgrepper
  An extension to use Semgrep inside Burp Suite.
  ☆89Updated last month
• tenable / hidden-services-revealer
  ☆36Updated 11 months ago
• pbom-dev / OSCAR
  A comprehensive, systematic and actionable way to understand attacker behaviors and techniques with respect to the software supply chain
  ☆96Updated 4 months ago
• DefectDojo / Community-Contribs
  DefectDojo Community Content
  ☆18Updated last month
• KaanSK / go-epss
  A Golang library for interacting with the EPSS (Exploit Prediction Scoring System).
  ☆28Updated 4 months ago
• doyensec / PESD-Exporter-Extension
  PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams
  ☆105Updated 5 months ago
• harekrishnarai / Damn-vulnerable-sca
  Damn Vulnerable SCA Application
  ☆38Updated 3 weeks ago
• lacioffi / GCP-pentest-lab
  A vulnerable environment for exploring common GCP misconfigurations and vulnerabilities
  ☆27Updated 3 months ago
• ghostsecurityarchive / waf-btk
  WAF bypass PoC
  ☆48Updated last year
• federicodotta / semgrep-rules
  A collection of my Semgrep rules
  ☆49Updated 2 years ago
• rusakovichma / TicTaaC
  Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …
  ☆65Updated last week
• controlplaneio / truffleproc
  truffleproc — hunt secrets in process memory (TruffleHog & gdb mashup)
  ☆119Updated last year
• semgr8ns / semgr8s
  Semgrep-based Policy Controller for Kubernetes
  ☆47Updated 3 months ago
• tuannq2299 / semgrep-rules
  A collection of Semgrep rules which followed security guidelines for .NET and Java.
  ☆23Updated 3 years ago
• AnubisSec / GroovyWaiter
  ☆17Updated 3 years ago
• RefactorSecurity / vscode-security-notes
  Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝
  ☆133Updated 3 months ago
• SecurityUniversalOrg / SecuSphere
  Efficient DevSecOps
  ☆47Updated last week
• siamthanathack / Passkey-Raider
  Burp Suite extension for testing Passkey systems.
  ☆70Updated 3 months ago
• apiiro / malicious-code-ruleset
  Focused malicious code detection ruleset, with a high protection-to-noise ratio
  ☆122Updated 4 months ago
• AdnaneKhan / ActionsCacheBlasting
  Proof-of-concept code for research into GitHub Actions Cache poisoning.
  ☆21Updated 3 months ago
• pocahon / jsontoneo
  ☆12Updated 3 months ago
• krol3 / kubernetes-security-checklist
  Awesome resources about Security in Kubernetes
  ☆43Updated 2 years ago