semgrep / semgrep-docsLinks
Documentation of Semgrep: a fast, open-source, static analysis tool.
☆44Updated this week
Alternatives and similar repositories for semgrep-docs
Users that are interested in semgrep-docs are comparing it to the libraries listed below
Sorting:
- Dependency Combobulator☆93Updated last year
- ☆60Updated 2 years ago
- Collection of Semgrep rules for security analysis☆11Updated last year
- Proof-of-concept code for research into GitHub Actions Cache poisoning.☆21Updated 7 months ago
- Static Token And Credential Scanner☆95Updated 2 years ago
- A tool to run nmap against each line in a script.☆17Updated 4 years ago
- insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.☆50Updated 3 years ago
- ☆114Updated 2 years ago
- Salesforce Policy Deviation Checker☆30Updated 5 years ago
- A collection of my Semgrep rules☆50Updated 2 years ago
- DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raider☆139Updated 4 years ago
- Manager of third-party sources of Semgrep rules 🗂☆90Updated last year
- Quick WAF "paranoid" Doctor Evaluation | WAFPARAN01D3 Tool☆24Updated 3 years ago
- WAF bypass PoC☆49Updated 2 years ago
- Blogpost series showcasing interesting cloud - web app security bugs☆50Updated 2 years ago
- Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container☆105Updated 6 years ago
- An implementation of infrastructure-as-code scanning using dynamic tooling.☆56Updated 3 years ago
- Command line fuzzer and bruteforcer 🌪 wfuzz for command☆90Updated 3 years ago
- Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.☆78Updated 3 years ago
- Kubernetes Pwnage for all☆56Updated 4 years ago
- An Evil OIDC Server☆54Updated 3 years ago
- Burp Extension for AWS Signing☆89Updated 9 months ago
- A Python-based tool to create zip, tar and cpio archives to exploit common archive library issues and developer mistakes☆43Updated 2 years ago
- GCP Audit checks projects in Google Cloud for compliance with CIS Benchmarks☆27Updated 5 months ago
- Reference architecture and proof of concept implementation for supply chain security gateway☆23Updated 2 years ago
- OAuth 2.0 Dynamic Security Scanner☆33Updated 4 years ago
- A wrapper around jq, to help you parse jq output!☆30Updated 5 years ago
- ☆36Updated 5 years ago
- Exploit CVE-2021-25735: Kubernetes Validating Admission Webhook Bypass☆17Updated 4 years ago
- Scanner to identify dangling DNS records and subdomain takeovers☆49Updated 11 months ago