semgrep-old/rules-owasp-asvs external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

semgrep-old/rules-owasp-asvs

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/semgrep-old/rules-owasp-asvs)

Close

semgrep-old / rules-owasp-asvsView on GitHubMore

• External links
• Readme badge

Semgrep rules corresponding to the OWASP ASVS standard

☆27Nov 2, 2020Updated 5 years ago

Alternatives and similar repositories for rules-owasp-asvs

Users that are interested in rules-owasp-asvs are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• SecurityRiskAdvisors / Burp-Load-Balancer-Cookie-Scanner

  View on GitHub
  Burp extension to find and decode BigIP and Netscaler cookies
  ☆15Jul 20, 2018Updated 7 years ago
• kondukto-io / semgrep-rules

  View on GitHub
  Custom semgrep rules registry
  ☆14Aug 23, 2022Updated 3 years ago
• j3ssie / curated-semgrep-rules

  View on GitHub
  Curated Collection of Popular Community Rules for Semgrep
  ☆17Dec 27, 2023Updated 2 years ago
• oss-review-toolkit / ort-ci-gitlab

  View on GitHub
  Use ORT in your GitLab pipelines
  ☆15Nov 11, 2025Updated 5 months ago
• BlazingWind / OWASP-ASVS-4.0-testing-guide

  View on GitHub
  ☆125Nov 8, 2023Updated 2 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• vmnguyen / semgrep-rules

  View on GitHub
  My custom semgrep rules
  ☆23Sep 13, 2020Updated 5 years ago
• mllamazares / STRIDE-vs-ASVS

  View on GitHub
  🖇️ equivalence table between OWASP ASVS standard and STRIDE threat modeling methodology.
  ☆76Aug 22, 2024Updated last year
• hashicorp-forge / semgrep-rules

  View on GitHub
  HashiCorp-relevant rules for the Semgrep code analysis tool
  ☆41Oct 3, 2023Updated 2 years ago
• sensepost / x11-active-displays

  View on GitHub
  Checks X11 and outputs a screenshot to of the display if allowed and the display is active
  ☆23Dec 12, 2016Updated 9 years ago
• tiburon-security / sriracha-iq

  View on GitHub
  Rapid cybersecurity toolkit based on Elastic in Docker. Designed to quickly build elastic-based environments to analyze and execute threa…
  ☆18Apr 10, 2020Updated 6 years ago
• gdgd009xcd / RequestRecorder

  View on GitHub
  A ZAPROXY Add-on that allows testing of web application vulnerabilities by recording complex multi-step sequences. You can test applica…
  ☆22May 14, 2025Updated 11 months ago
• JavanXD / Demo-Exploit-Jackson-RCE

  View on GitHub
  Exploiting CVE-2017-7525 demo project with Angular7 frontend and Spring.
  ☆18Feb 21, 2019Updated 7 years ago
• snyk-labs / docker-goof

  View on GitHub
  A demo repo showcasing Snyk's Docker offering
  ☆35Aug 12, 2024Updated last year
• TheManyHatsClub-CTF / TheManyHatsClubCTF

  View on GitHub
  Challenges for the TheManyHatsClub CTF
  ☆11May 1, 2023Updated 2 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• gdgd009xcd / CustomActiveScanForZAP

  View on GitHub
  a ZAPROXY Addon ActiveScan for detecting SQL injection with more better way.
  ☆18Jan 22, 2025Updated last year
• RedTeamOperations / GoogleWorkspaceDirectoryDump

  View on GitHub
  ☆19Jul 9, 2022Updated 3 years ago
• SecObserve / secobserve_actions_templates

  View on GitHub
  GitHub actions and GitLab CI templates run various vulnerability scanners, upload the results into SecObserve and make the results of the…
  ☆28Updated this week
• blackhatethicalhacking / lsassy

  View on GitHub
  Extract credentials from lsass remotely
  ☆16Jan 3, 2020Updated 6 years ago
• iosifache / semgrep-rules-manager

  View on GitHub
  Manager of 14 third-party sources comprising approximately 4,000 Semgrep rules 🗂
  ☆106Dec 24, 2025Updated 3 months ago
• nmmapper / censys-subdomain-finder-non-api

  View on GitHub
  Using censys to find subdomains but without the APIs just scrapping
  ☆16May 13, 2020Updated 5 years ago
• xebis-legacy / repository-template

  View on GitHub
  Highly automated, up-to-date, and well-documented repository template. Checks for common problems, Markdown, YAML, Bash, formats, lints, …
  ☆16Jan 1, 2024Updated 2 years ago
• spyd3r / owasp-asvs-github

  View on GitHub
  ☆18Apr 21, 2020Updated 5 years ago
• trailofbits / semgrep-rules

  View on GitHub
  Semgrep queries developed by Trail of Bits.
  ☆493Nov 12, 2025Updated 5 months ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• eloquence / help.wtf

  View on GitHub
  cheatsheets for life
  ☆13Jan 22, 2026Updated 2 months ago
• city-mobil / common_security_pipeline

  View on GitHub
  GitLab CI security tools runner
  ☆18Feb 3, 2023Updated 3 years ago
• hahwul / xssmaze

  View on GitHub
  XSSMaze is a web service designed to test and improve the performance of security testing tools by providing various cases of XSS vulnera…
  ☆32Mar 31, 2026Updated 2 weeks ago
• devoteam-cybertrust / android

  View on GitHub
  Repository with research related to Android
  ☆13Jul 17, 2018Updated 7 years ago
• elttam / semgrep-rules

  View on GitHub
  ☆231Dec 18, 2025Updated 3 months ago
• OWASP / threat-modeling-playbook

  View on GitHub
  ☆36Mar 8, 2022Updated 4 years ago
• secf00tprint / payloadtester_lfi_rfi

  View on GitHub
  LFI/RFI Payload Tests Project
  ☆36Oct 21, 2019Updated 6 years ago
• ikoz / cert-pinning-flaw-poc

  View on GitHub
  Simple script for testing CVE-2016-2402 and similar flaws
  ☆13Mar 30, 2016Updated 10 years ago
• bao7uo / waf-cookie-fetcher

  View on GitHub
  WAF Cookie Fetcher is a Burp Suite extension written in Python, which uses a headless browser to obtain the values of WAF-injected cookie…
  ☆16Jan 16, 2018Updated 8 years ago
• Wordpress hosting with auto-scaling - Free Trial • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• v-p-b / DangerousPHPFunctions

  View on GitHub
  Growing list of potentially dangerous PHP functions
  ☆52May 1, 2019Updated 6 years ago
• andrewbeard / broworkshop

  View on GitHub
  Materials for the BSides NoVA/Charleston 2018 Bro Workshop
  ☆14Jun 4, 2025Updated 10 months ago
• ropbear / CLMBypass

  View on GitHub
  Bypass Constrained Language Mode in PowerShell
  ☆29May 21, 2019Updated 6 years ago
• akhil-reni / xsstutorial

  View on GitHub
  ☆11Jun 19, 2024Updated last year
• SerpicoProject / SerpicoPlugins

  View on GitHub
  Plugins for the Serpico Project
  ☆23Dec 4, 2018Updated 7 years ago
• Sam0rai / guilty-as-yara

  View on GitHub
  ☆30Oct 13, 2025Updated 6 months ago
• ariya / esmorph

  View on GitHub
  ECMAScript source modification tool
  ☆63Feb 6, 2016Updated 10 years ago