trailofbits / vendetectLinks
A tool to automatically detect copy+pasted and vendored code between repositories
☆69Updated 2 weeks ago
Alternatives and similar repositories for vendetect
Users that are interested in vendetect are comparing it to the libraries listed below
Sorting:
- Deptective automatically determines the native dependencies required to run any arbitrary program or command.☆120Updated last month
- Data about all known supply-chain attacks through history☆60Updated 4 months ago
- 🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.☆41Updated 9 months ago
- Code Pathfinder, the open-source alternative to GitHub CodeQL built with GoLang. Built for advanced structural search, derive insights, f…☆68Updated last week
- Security tool against dependency typosquatting attacks☆54Updated this week
- Automated vulnerability discovery and annotation☆67Updated last year
- Post-Quantum Cryptography Scanner - Scan SSH/TLS servers for PQC support☆89Updated 2 months ago
- EZGHSA is a command-line tool for summarizing and filtering vulnerability alerts on Github repositories.☆35Updated last month
- Trail of Bits Testing Handbook☆81Updated 2 months ago
- ☆84Updated 2 months ago
- eBPF Memory Dump Tool☆86Updated last month
- Secure Code Review AI Agent (SeCoRA) - AI SAST☆50Updated 8 months ago
- ChainReactor is a research project that leverages AI planning to discover exploitation chains for privilege escalation on Unix systems. T…☆52Updated 11 months ago
- 💅🏽 analyzes your github actions☆94Updated 2 weeks ago
- Unauthenticated enumeration of AWS IAM Roles.☆25Updated 3 weeks ago
- Generative and mutative fuzzer for Kubernetes admission controller chains by automatically parsing the cluster api specification.☆74Updated 2 years ago
- SecureMCP is a security auditing tool designed to detect vulnerabilities and misconfigurations in applications using the [Model Context P…☆133Updated 3 months ago
- An interactive CLI application for interacting with authenticated Jupyter instances.☆55Updated 4 months ago
- A web CTF for training developers in bug hunting and secure coding!☆100Updated 8 months ago
- A comprehensive security scanner for Model Context Protocol (MCP) servers that detects vulnerabilities and security issues in your MCP se…☆98Updated 2 weeks ago
- An OpenAI API Compatible Honeypot Gateway☆16Updated 6 months ago
- atom is a novel intermediate representation for applications and a standalone tool that is powered by chen.☆73Updated this week
- MCP security wrapper☆190Updated last month
- Golem automates C/C++ vulnerability discovery with SemGrep+LLVM+LLM☆91Updated 3 months ago
- PoC shadow SaaS and insecure credential detection system using a browser extension.☆40Updated last month
- ☆39Updated last year
- Use LLMs for document ranking☆148Updated 5 months ago
- ☆18Updated last year
- FlowAnalyzer is a tool to help in testing and analyzing OAuth 2.0 Flows, including OpenID Connect (OIDC).☆179Updated last year
- A very simple open source implementation of Google's Project Naptime☆169Updated 6 months ago