shivasurya / code-pathfinderLinks
An open-source security suite aiming to combine structural code analysis with AI-powered vulnerability detection. Built for advanced structural search, derive insights, find vulnerabilities in code.
☆84Updated this week
Alternatives and similar repositories for code-pathfinder
Users that are interested in code-pathfinder are comparing it to the libraries listed below
Sorting:
- Deptective automatically determines the native dependencies required to run any arbitrary program or command.☆127Updated 2 weeks ago
- MCP security wrapper☆205Updated 3 weeks ago
- atom is a novel intermediate representation for applications and a standalone tool that is powered by chen.☆78Updated last week
- Security tool against dependency typosquatting attacks☆54Updated last week
- 🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.☆41Updated last year
- Use LLMs for document ranking☆160Updated 8 months ago
- Trail of Bits Testing Handbook - appsec.guide☆88Updated this week
- Automated vulnerability discovery and annotation☆67Updated last year
- Metis is an open-source, AI-driven tool for deep security code review☆429Updated last week
- A very simple open source implementation of Google's Project Naptime☆179Updated 9 months ago
- RedFlag uses AI to identify high-risk code changes. Run it in batch mode for release candidate testing or in CI pipelines to flag PRs and…☆158Updated last year
- SecureMCP is a security auditing tool designed to detect vulnerabilities and misconfigurations in applications using the [Model Context P…☆132Updated 6 months ago
- A tool to automatically detect copy+pasted and vendored code between repositories☆74Updated last week
- Prevent merging of malicious code in pull requests☆252Updated 9 months ago
- Vanir is a source code-based static analysis tool that automatically identifies the list of missing security patches in the target system…☆343Updated 2 months ago
- ChainReactor is a research project that leverages AI planning to discover exploitation chains for privilege escalation on Unix systems. T…☆56Updated last year
- MCP Snitch is a macOS application that intercepts and monitors MCP server communications, providing security analysis, access control, an…☆90Updated 2 months ago
- Secure Code Review AI Agent (SeCoRA) - AI SAST☆54Updated 11 months ago
- Detecting Inconsistencies in Feature or Function Evaluations of Requirements☆68Updated last year
- A flexible framework for security teams to build and deploy AI-powered workflows that complement their existing security operations.☆146Updated 2 weeks ago
- An OpenAI API Compatible Honeypot Gateway☆17Updated 9 months ago
- PWN is an open security automation framework that aims to stand on the shoulders of security giants, promoting trust and innovation.☆67Updated last week
- ☆75Updated 2 months ago
- YouShallNotPass brings an added level of execution security to mission-critical CI/CD Systems.☆37Updated last year
- Autogrep automates Semgrep rule generation and filtering by using LLMs to analyze vulnerability patches, enabling automatic creation of h…☆62Updated 10 months ago
- OpenShield is a new generation security layer for AI models☆83Updated last week
- Unauthenticated enumeration of AWS IAM Roles.☆26Updated 3 months ago
- Repository containing source code of MixewayFlow service that is Swiss army knife for DevSecOps Teams☆78Updated last week
- SARIF Explorer: A VSCode extension that helps you visualize and triage static analysis results☆41Updated 3 weeks ago
- Modular framework for file information extraction and dependency analysis to generate accurate SBOMs☆37Updated last week