semgrep / semgrep-docsLinks
Documentation of Semgrep: a fast, open-source, static analysis tool.
☆41Updated this week
Alternatives and similar repositories for semgrep-docs
Users that are interested in semgrep-docs are comparing it to the libraries listed below
Sorting:
- Proof-of-concept code for research into GitHub Actions Cache poisoning.☆21Updated 2 months ago
- A collection of my Semgrep rules☆49Updated last year
- Konstellation is a configuration-driven CLI tool to enumerate cloud resources and store the data into Neo4j.☆21Updated last year
- Dependency Combobulator☆93Updated last year
- Maturity Model Collaborative project☆15Updated 2 years ago
- Manager of third-party sources of Semgrep rules 🗂☆86Updated 10 months ago
- Example repository for GitHub Actions Time of Check to Time of Use (TOCTOU vulnerabilities)☆23Updated last month
- multiple password 'asher using Python’s hashlib☆14Updated 4 years ago
- Salesforce Policy Deviation Checker☆30Updated 4 years ago
- Create tar/zip archives that try to exploit zipslip vulnerability.☆47Updated 8 months ago
- PESD (Proxy Enriched Sequence Diagrams) Exporter converts Burp Suite's proxy traffic into interactive diagrams☆105Updated 4 months ago
- Custom semgrep rules registry☆12Updated 2 years ago
- 🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.☆39Updated 5 months ago
- Semgrep extension for Visual Studio Code☆62Updated last week
- Anti-Takeover is a sub domain monitoring tool for (blue/purple) team / internal security team which uses cloud flare. Currently Anti-Take…☆12Updated 4 years ago
- ☆31Updated 2 years ago
- insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.☆50Updated 3 years ago
- AWS Security Checks☆39Updated 7 years ago
- Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)☆58Updated last month
- Reference architecture and proof of concept implementation for supply chain security gateway☆23Updated 2 years ago
- ☆24Updated last year
- ☆24Updated 3 years ago
- A wrapper around jq, to help you parse jq output!☆30Updated 4 years ago
- Kubernetes Security Testing Guide☆26Updated last year
- Some helpful Helm Charts for pentesters☆39Updated 6 years ago
- Fork of https://github.com/PortSwigger/param-miner for header smuggling research☆12Updated 3 years ago
- Kubernetes Pwnage for all☆57Updated 4 years ago
- Jekyll Files for cloudsecwiki.com☆50Updated 3 years ago
- Paper, data and code from Investigating Potential Security Vulnerability Manifestation through Various Analyses & Inferences Regarding In…☆19Updated 4 years ago
- Binary builds for dep-scan - The Dependency Scanner☆10Updated last year