semgrep-old/rules-owasp-asvs external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

semgrep-old/rules-owasp-asvs

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/semgrep-old/rules-owasp-asvs)

Close

semgrep-old / rules-owasp-asvsView on GitHubMore

• External links
• Readme badge

Semgrep rules corresponding to the OWASP ASVS standard

☆27Nov 2, 2020Updated 5 years ago

Alternatives and similar repositories for rules-owasp-asvs

Users that are interested in rules-owasp-asvs are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• YaleUniversity / ZAP_ASVS_Checks

  View on GitHub
  ZAP scripts to implement ASVS L1 checking
  ☆17Apr 28, 2022Updated 3 years ago
• SecurityRiskAdvisors / Burp-Load-Balancer-Cookie-Scanner

  View on GitHub
  Burp extension to find and decode BigIP and Netscaler cookies
  ☆15Jul 20, 2018Updated 7 years ago
• kondukto-io / semgrep-rules

  View on GitHub
  Custom semgrep rules registry
  ☆14Aug 23, 2022Updated 3 years ago
• j3ssie / curated-semgrep-rules

  View on GitHub
  Curated Collection of Popular Community Rules for Semgrep
  ☆18Dec 27, 2023Updated 2 years ago
• oss-review-toolkit / ort-ci-gitlab

  View on GitHub
  Use ORT in your GitLab pipelines
  ☆15Nov 11, 2025Updated 4 months ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• BlazingWind / OWASP-ASVS-4.0-testing-guide

  View on GitHub
  ☆125Nov 8, 2023Updated 2 years ago
• thehackerish / GWTab

  View on GitHub
  BurpSuite extension that helps find user input in a GWT body.
  ☆12May 29, 2020Updated 5 years ago
• sensepost / x11-active-displays

  View on GitHub
  Checks X11 and outputs a screenshot to of the display if allowed and the display is active
  ☆23Dec 12, 2016Updated 9 years ago
• guyinatuxedo / real_hacker_hours

  View on GitHub
  ☆22Dec 1, 2021Updated 4 years ago
• semgrep / semgrep-rules

  View on GitHub
  Semgrep Community Edition rules, maintained by Semgrep and the community. Free to use under the Semgrep Rules License.
  ☆1,099Mar 19, 2026Updated last week
• gdgd009xcd / RequestRecorder

  View on GitHub
  A ZAPROXY Add-on that allows testing of web application vulnerabilities by recording complex multi-step sequences. You can test applica…
  ☆22May 14, 2025Updated 10 months ago
• snyk-labs / docker-goof

  View on GitHub
  A demo repo showcasing Snyk's Docker offering
  ☆34Aug 12, 2024Updated last year
• TheManyHatsClub-CTF / TheManyHatsClubCTF

  View on GitHub
  Challenges for the TheManyHatsClub CTF
  ☆11May 1, 2023Updated 2 years ago
• gdgd009xcd / CustomActiveScanForZAP

  View on GitHub
  a ZAPROXY Addon ActiveScan for detecting SQL injection with more better way.
  ☆18Jan 22, 2025Updated last year
• Wordpress hosting with auto-scaling on Cloudways • Ad
  Fully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
• RedTeamOperations / GoogleWorkspaceDirectoryDump

  View on GitHub
  ☆19Jul 9, 2022Updated 3 years ago
• SecObserve / secobserve_actions_templates

  View on GitHub
  GitHub actions and GitLab CI templates run various vulnerability scanners, upload the results into SecObserve and make the results of the…
  ☆28Updated this week
• blackhatethicalhacking / lsassy

  View on GitHub
  Extract credentials from lsass remotely
  ☆16Jan 3, 2020Updated 6 years ago
• nmmapper / censys-subdomain-finder-non-api

  View on GitHub
  Using censys to find subdomains but without the APIs just scrapping
  ☆16May 13, 2020Updated 5 years ago
• xebis-legacy / repository-template

  View on GitHub
  Highly automated, up-to-date, and well-documented repository template. Checks for common problems, Markdown, YAML, Bash, formats, lints, …
  ☆16Jan 1, 2024Updated 2 years ago
• TypeError / reflect

  View on GitHub
  OWASP ZAP add-on to detect reflected parameter vulnerabilities efficiently
  ☆12Feb 19, 2021Updated 5 years ago
• google / acjs

  View on GitHub
  ☆11Dec 19, 2024Updated last year
• trailofbits / semgrep-rules

  View on GitHub
  Semgrep queries developed by Trail of Bits.
  ☆486Nov 12, 2025Updated 4 months ago
• eloquence / help.wtf

  View on GitHub
  cheatsheets for life
  ☆13Jan 22, 2026Updated 2 months ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• city-mobil / common_security_pipeline

  View on GitHub
  GitLab CI security tools runner
  ☆18Feb 3, 2023Updated 3 years ago
• hahwul / xssmaze

  View on GitHub
  XSSMaze is a web service designed to test and improve the performance of security testing tools by providing various cases of XSS vulnera…
  ☆31Mar 8, 2026Updated 2 weeks ago
• OWASP / threat-modeling-playbook

  View on GitHub
  ☆35Mar 8, 2022Updated 4 years ago
• OpenSecuritySummit / oss-website

  View on GitHub
  The Open Security Summit is focused on the collaboration between, Developers and Application Security
  ☆45Jul 9, 2025Updated 8 months ago
• ikoz / cert-pinning-flaw-poc

  View on GitHub
  Simple script for testing CVE-2016-2402 and similar flaws
  ☆13Mar 30, 2016Updated 9 years ago
• bao7uo / waf-cookie-fetcher

  View on GitHub
  WAF Cookie Fetcher is a Burp Suite extension written in Python, which uses a headless browser to obtain the values of WAF-injected cookie…
  ☆16Jan 16, 2018Updated 8 years ago
• v-p-b / DangerousPHPFunctions

  View on GitHub
  Growing list of potentially dangerous PHP functions
  ☆52May 1, 2019Updated 6 years ago
• LeastAuthority / Transfer

  View on GitHub
  File transfer app that uses the magic wormhole protocol
  ☆11Oct 11, 2022Updated 3 years ago
• andrewbeard / broworkshop

  View on GitHub
  Materials for the BSides NoVA/Charleston 2018 Bro Workshop
  ☆14Jun 4, 2025Updated 9 months ago
• Proton VPN Special Offer - Get 70% off • Ad
  Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
• ropbear / CLMBypass

  View on GitHub
  Bypass Constrained Language Mode in PowerShell
  ☆29May 21, 2019Updated 6 years ago
• akhil-reni / xsstutorial

  View on GitHub
  ☆11Jun 19, 2024Updated last year
• c0nrad / caspr

  View on GitHub
  Content-Security-Policy report aggregator/analyzer
  ☆54May 29, 2020Updated 5 years ago
• egardner / mediawiki-extensions-VueTest

  View on GitHub
  Sandbox to test Vue.js integration in MediaWiki
  ☆13Dec 10, 2022Updated 3 years ago
• Sam0rai / guilty-as-yara

  View on GitHub
  ☆30Oct 13, 2025Updated 5 months ago
• imrannissar / awk-and-sed

  View on GitHub
  commands
  ☆27Nov 5, 2020Updated 5 years ago
• ariya / esmorph

  View on GitHub
  ECMAScript source modification tool
  ☆62Feb 6, 2016Updated 10 years ago