shivamsaraswat / SeCoRA
Secure Code Review AI Agent (SeCoRA) - AI SAST
☆48Updated 3 months ago
Alternatives and similar repositories for SeCoRA:
Users that are interested in SeCoRA are comparing it to the libraries listed below
- Identify hardcoded secrets in static structured text (version 2)☆91Updated 3 months ago
- AuditForge is a pentest reporting application making it simple and easy to write your findings and generate a customizable report.☆70Updated last week
- A powerful tool that leverages AI to automatically generate comprehensive security documentation for your projects☆76Updated this week
- A tool for scanning public or private AMIs for sensitive files and secrets. The tool follows the research made on AWS CloudQuarry where w…☆107Updated 5 months ago
- Burp Suite extension for testing Passkey systems.☆68Updated last month
- A web CTF for training developers in bug hunting and secure coding!☆99Updated 3 months ago
- FrogPost: postMessage Security Testing Tool☆64Updated this week
- Nuclei plugins to audit Chrome extensions☆64Updated 9 months ago
- ☆35Updated 9 months ago
- ☆22Updated 2 months ago
- Ansible/Vagrant/Packer files to create a virtual machine with the tooling needed to perform cloud security assessments☆140Updated 4 months ago
- Static code analyser for backdoors and malicious code in git repos using OpenAI compatible LLM APIs☆73Updated last year
- 🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.☆39Updated 4 months ago
- Use AI to Scan Your Code from the Command Line for security and code smells. Bring your own keys. Supports OpenAI and Gemini☆168Updated 2 weeks ago
- Framework for Monitoring File Ingestion Source for Yara Matches☆46Updated last month
- Burp Suite extension for bypassing client-side encryption for pentesting and bug bounty in WebSocket☆74Updated this week
- A collection of Turbo Intruder scripts.☆58Updated 3 months ago
- A tool to uncover undocumented APIs from the AWS Console.☆102Updated last week
- Putting a leash on naughty AWS permissions☆116Updated 3 weeks ago
- A Model Context Protocol server that connects AI assistants like Claude to AWS security services, allowing them to autonomously query, in…☆34Updated last week
- 🌐 Visualize and explore IaC ✒️ Create and share notes in VS Code 🤝 Sync notes and findings in real-time with friends☆72Updated last year
- Autonomous AI C2☆30Updated 9 months ago
- A comprehensive knowledge base for security professionals to keep track of and build defenses against API attack techniques.☆43Updated 7 months ago
- Protection against HTML smuggling attacks.☆97Updated last week
- Security tool against dependency typosquatting attacks☆39Updated this week
- 🪟 Windows ➡️ A Windows tool for emergency privacy: instantly deletes sensitive data and active logins to protect my information during u…☆30Updated 2 weeks ago
- An automated GitHub Actions-based crawler that fetches and updates public scopes from popular bug bounty platforms (like Hackerone/Bugcro…☆37Updated this week
- This GitHub Action sends a reverse shell from a runner via Azure Storage Account blobs☆37Updated 7 months ago
- tool designed for identifying vulnerabilities in open source codebases at scale. It can gather and filter on key repository metrics such …☆226Updated 3 months ago
- EZGHSA is a command-line tool for summarizing and filtering vulnerability alerts on Github repositories.☆35Updated 4 months ago