shivasurya / code-pathfinderLinks
An open-source security suite aiming to combine structural code analysis with AI-powered vulnerability detection. Built for advanced structural search, derive insights, find vulnerabilities in code.
☆81Updated this week
Alternatives and similar repositories for code-pathfinder
Users that are interested in code-pathfinder are comparing it to the libraries listed below
Sorting:
- Deptective automatically determines the native dependencies required to run any arbitrary program or command.☆123Updated 3 weeks ago
- atom is a novel intermediate representation for applications and a standalone tool that is powered by chen.☆73Updated last week
- 🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.☆41Updated 11 months ago
- A very simple open source implementation of Google's Project Naptime☆173Updated 7 months ago
- Security tool against dependency typosquatting attacks☆54Updated last week
- MCP security wrapper☆202Updated 3 weeks ago
- Use LLMs for document ranking☆158Updated 7 months ago
- An OpenAI API Compatible Honeypot Gateway☆16Updated 8 months ago
- A tool to automatically detect copy+pasted and vendored code between repositories☆72Updated 3 weeks ago
- Metis is an open-source, AI-driven tool for deep security code review☆83Updated this week
- MCP Snitch is a macOS application that intercepts and monitors MCP server communications, providing security analysis, access control, an…☆82Updated last month
- Trail of Bits Testing Handbook☆82Updated last week
- ChainReactor is a research project that leverages AI planning to discover exploitation chains for privilege escalation on Unix systems. T…☆52Updated last year
- Secure Code Review AI Agent (SeCoRA) - AI SAST☆53Updated 9 months ago
- SAST + LLM Interprocedural Context Extractor☆139Updated 2 weeks ago
- Vanir is a source code-based static analysis tool that automatically identifies the list of missing security patches in the target system…☆342Updated last month
- Automated vulnerability discovery and annotation☆67Updated last year
- Prevent merging of malicious code in pull requests☆239Updated 7 months ago
- ☆72Updated 3 weeks ago
- Autogrep automates Semgrep rule generation and filtering by using LLMs to analyze vulnerability patches, enabling automatic creation of h…☆53Updated 8 months ago
- A Completely Modular LLM Reverse Engineering, Red Teaming, and Vulnerability Research Framework.☆52Updated last year
- A flexible framework for security teams to build and deploy AI-powered workflows that complement their existing security operations.☆137Updated last week
- Unauthenticated enumeration of AWS IAM Roles.☆25Updated 2 months ago
- A comprehensive security scanner for Model Context Protocol (MCP) servers that detects vulnerabilities and security issues in your MCP se…☆107Updated 3 weeks ago
- Detecting Inconsistencies in Feature or Function Evaluations of Requirements☆68Updated last year
- SARIF Explorer: A VSCode extension that helps you visualize and triage static analysis results☆38Updated this week
- ☆100Updated 9 months ago
- SecureMCP is a security auditing tool designed to detect vulnerabilities and misconfigurations in applications using the [Model Context P…☆133Updated 5 months ago
- RedFlag uses AI to identify high-risk code changes. Run it in batch mode for release candidate testing or in CI pipelines to flag PRs and…☆155Updated 11 months ago
- Data about all known supply-chain attacks through history☆61Updated 5 months ago