Alternatives and similar repositories for semgrep-rules

Users that are interested in semgrep-rules are comparing it to the libraries listed below

• iosifache / semgrep-rules-manager
  Manager of third-party sources of Semgrep rules 🗂
  ☆82Updated 9 months ago
• franksec42 / Vulnerability-management-maturity
  Maturity Model Collaborative project
  ☆15Updated 2 years ago
• mllamazares / vulncov
  🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.
  ☆39Updated 5 months ago
• s0rcy / semgrep-rules
  Collection of Semgrep rules for security analysis
  ☆10Updated last year
• akabe1 / akabe1-semgrep-rules
  My collection of Semgrep rules for vulnerability detection on source code (swift, java)
  ☆34Updated last year
• DefectDojo / Community-Contribs
  DefectDojo Community Content
  ☆18Updated 7 months ago
• kondukto-io / semgrep-rules
  Custom semgrep rules registry
  ☆12Updated 2 years ago
• binareio / FastCVE
  FastCVE - fast, rich and API-based search for CVE and more (CPE, CWE, CAPEC)
  ☆50Updated this week
• apiiro / malicious-code-ruleset
  Focused malicious code detection ruleset, with a high protection-to-noise ratio
  ☆118Updated 2 months ago
• shivasurya / code-pathfinder
  Code Pathfinder, the open-source alternative to GitHub CodeQL built with GoLang. Built for advanced structural search, derive insights, f…
  ☆59Updated 2 weeks ago
• tuannq2299 / semgrep-rules
  A collection of Semgrep rules which followed security guidelines for .NET and Java.
  ☆22Updated 3 years ago
• semgrep / semgrep-docs
  Documentation of Semgrep: a fast, open-source, static analysis tool.
  ☆40Updated this week
• ossf / security-reviews
  A community collection of security reviews of open source software components.
  ☆93Updated last year
• VerSprite / fork-community
  Fork Threat Modeling Platform - Community
  ☆19Updated last month
• abhisek / supply-chain-security-gateway
  Reference architecture and proof of concept implementation for supply chain security gateway
  ☆23Updated 2 years ago
• lightspin-tech / red-bucket-gcp
  ☆10Updated 3 years ago
• pry0cc / jf
  A wrapper around jq, to help you parse jq output!
  ☆30Updated 4 years ago
• KaanSK / go-epss
  A Golang library for interacting with the EPSS (Exploit Prediction Scoring System).
  ☆28Updated 3 months ago
• jeredbare / paradigm
  Paradigm is an open source tool that looks at your network landscape and determines what is actually accessible via the internet.
  ☆19Updated 2 years ago
• r3volved / CVEAggregate
  Build a CVE library with aggregated CISA, EPSS and CVSS data
  ☆27Updated last year
• stacscan / stacs
  Static Token And Credential Scanner
  ☆96Updated 2 years ago
• ochronasec / ochrona-cli
  A command line tool for detecting vulnerabilities in Python dependencies and doing safe package installs
  ☆51Updated 2 years ago
• AppThreat / vulnerability-db
  Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.1, purl, and vers…
  ☆118Updated 2 weeks ago
• lanrat / allxfr
  AXFR all the things!
  ☆26Updated 4 months ago
• indianajson / va-zone
  Summary and archive of Vatican .va (Holy See) ccTLD zone data for researchers.
  ☆13Updated 2 years ago
• trufflesecurity / WhoAmISlack
  Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.
  ☆41Updated last year
• LuizBoina / dragon-gpt
  Dragon-GPT uses Chat-GPT, or local LLM, to execute automatic and AI-powered threat modeling analysis on a given OWASP Threat Dragon diagr…
  ☆35Updated 2 months ago
• canonical / ubuntu-security-notices
  ☆17Updated this week
• owasp-amass / asset-db
  Database interaction layer to store open-asset-models in sqlite3 and postgres
  ☆18Updated this week
• AppThreat / atom
  atom is a novel intermediate representation for applications and a standalone tool that is powered by chen.
  ☆65Updated this week