shivasurya / code-pathfinderLinks
An open-source security suite aiming to combine structural code analysis with AI-powered vulnerability detection. Built for advanced structural search, derive insights, find vulnerabilities in code.
☆90Updated last week
Alternatives and similar repositories for code-pathfinder
Users that are interested in code-pathfinder are comparing it to the libraries listed below
Sorting:
- Deptective automatically determines the native dependencies required to run any arbitrary program or command.☆126Updated last month
- Vanir is a source code-based static analysis tool that automatically identifies the list of missing security patches in the target system…☆348Updated 3 months ago
- MCP security wrapper☆207Updated last month
- Metis is an open-source, AI-driven tool for deep security code review☆452Updated this week
- atom is a novel intermediate representation for applications and a standalone tool that is powered by chen.☆81Updated last week
- Security tool against dependency typosquatting attacks☆54Updated this week
- 🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.☆42Updated last year
- A tool to automatically detect copy+pasted and vendored code between repositories☆74Updated this week
- Automated vulnerability discovery and annotation☆67Updated last year
- MCP Snitch is a macOS application that intercepts and monitors MCP server communications, providing security analysis, access control, an…☆92Updated 3 months ago
- Data about all known supply-chain attacks through history☆63Updated 7 months ago
- Trail of Bits Testing Handbook - appsec.guide☆88Updated last week
- A very simple open source implementation of Google's Project Naptime☆182Updated 9 months ago
- Prevent merging of malicious code in pull requests☆252Updated last week
- SecureMCP is a security auditing tool designed to detect vulnerabilities and misconfigurations in applications using the [Model Context P…☆137Updated 7 months ago
- An OpenAI API Compatible Honeypot Gateway☆17Updated 10 months ago
- Focused malicious code detection ruleset, with a high protection-to-noise ratio☆140Updated 10 months ago
- Autogrep automates Semgrep rule generation and filtering by using LLMs to analyze vulnerability patches, enabling automatic creation of h…☆70Updated 10 months ago
- Use LLMs for document ranking☆160Updated 9 months ago
- Manager of 14 third-party sources comprising approximately 4,000 Semgrep rules 🗂☆97Updated 3 weeks ago
- Detecting Inconsistencies in Feature or Function Evaluations of Requirements☆68Updated last year
- ☆76Updated 3 months ago
- SARIF Explorer: A VSCode extension that helps you visualize and triage static analysis results☆43Updated 2 weeks ago
- Nyxelf is a highly effective tool tailored for analyzing malicious Linux ELF binaries, offering comprehensive support for both static and…☆124Updated 2 months ago
- Post-Quantum Cryptography Scanner - Scan SSH/TLS servers for PQC support☆105Updated 2 months ago
- SAST + LLM Interprocedural Context Extractor☆176Updated 2 months ago
- A flexible framework for security teams to build and deploy AI-powered workflows that complement their existing security operations.☆147Updated last week
- Spotter is a comprehensive Kubernetes security scanner that uses CEL-based rules to identify security vulnerabilities, misconfigurations,…☆69Updated 4 months ago
- Automatic Exploit Generation with LLMs☆254Updated this week
- A comprehensive security scanner for Model Context Protocol (MCP) servers that detects vulnerabilities and security issues in your MCP se…☆120Updated last month