semgrep / semgrep-docsLinks
Documentation of Semgrep: a fast, open-source, static analysis tool.
☆41Updated this week
Alternatives and similar repositories for semgrep-docs
Users that are interested in semgrep-docs are comparing it to the libraries listed below
Sorting:
- Maturity Model Collaborative project☆15Updated 2 years ago
- Proof-of-concept code for research into GitHub Actions Cache poisoning.☆21Updated 3 months ago
- Fork of https://github.com/PortSwigger/param-miner for header smuggling research☆12Updated 3 years ago
- A wrapper around jq, to help you parse jq output!☆30Updated 4 years ago
- multiple password 'asher using Python’s hashlib☆15Updated 4 years ago
- Dependency Combobulator☆93Updated last year
- ☆10Updated 3 years ago
- Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)☆59Updated 2 months ago
- Reference architecture and proof of concept implementation for supply chain security gateway☆23Updated 2 years ago
- Example repository for GitHub Actions Time of Check to Time of Use (TOCTOU vulnerabilities)☆23Updated last month
- Burp Suite DAST Power Tools☆18Updated last month
- Manager of third-party sources of Semgrep rules 🗂☆87Updated 11 months ago
- ☆57Updated 2 years ago
- Paper, data and code from Investigating Potential Security Vulnerability Manifestation through Various Analyses & Inferences Regarding In…☆18Updated 4 years ago
- Salesforce Policy Deviation Checker☆30Updated 4 years ago
- AWS Security Checks☆39Updated 7 years ago
- A Golang library for interacting with the EPSS (Exploit Prediction Scoring System).☆28Updated 4 months ago
- Whitebox evaluation of effective S3 object permissions, to identify publicly accessible files.☆76Updated 3 years ago
- Scripts for Sourcegraph search results. Useful for static analysis <3☆28Updated last year
- Konstellation is a configuration-driven CLI tool to enumerate cloud resources and store the data into Neo4j.☆22Updated last year
- A collection of my Semgrep rules☆49Updated last year
- Jekyll Files for cloudsecwiki.com☆50Updated 3 years ago
- Blogpost series showcasing interesting cloud - web app security bugs☆49Updated 2 years ago
- Simple Command Line Tool to Enumerate Slack Workspace Names from Slack Webhook URLs.☆41Updated last year
- A project to visualize the software supply chain☆51Updated last year
- DefectDojo Community Content☆18Updated 2 weeks ago
- DEPRECATED, please use the new repository from OWASP: https://github.com/OWASP/raider☆139Updated 3 years ago
- ☆24Updated 3 years ago
- Quick WAF "paranoid" Doctor Evaluation | WAFPARAN01D3 Tool☆25Updated 3 years ago
- ☆111Updated 2 years ago