trailofbits / vendetectLinks
A tool to automatically detect copy+pasted and vendored code between repositories
☆74Updated 2 weeks ago
Alternatives and similar repositories for vendetect
Users that are interested in vendetect are comparing it to the libraries listed below
Sorting:
- Deptective automatically determines the native dependencies required to run any arbitrary program or command.☆127Updated last month
- Data about all known supply-chain attacks through history☆63Updated 8 months ago
- Automated vulnerability discovery and annotation☆68Updated last year
- AI-Native Static Code Analysis for modern security teams. Built for finding vulnerabilities, advanced structural search, derive insights …☆97Updated last week
- 🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.☆42Updated last year
- Trail of Bits Testing Handbook - appsec.guide☆92Updated this week
- eBPF Memory Dump Tool☆99Updated 5 months ago
- Security tool against dependency typosquatting attacks☆54Updated this week
- ☆86Updated this week
- An OpenAI API Compatible Honeypot Gateway☆17Updated 10 months ago
- Simple LLM service identification - translate IP:Port to Ollama, vLLM, LiteLLM, or 15+ other AI services in seconds☆18Updated last week
- 💅🏽 analyzes your github actions☆97Updated last month
- SARIF Explorer: A VSCode extension that helps you visualize and triage static analysis results☆44Updated last month
- Golem automates C/C++ vulnerability discovery with SemGrep+LLVM+LLM☆98Updated 7 months ago
- Automatic Exploit Generation with LLMs☆499Updated last week
- atom is a novel intermediate representation for applications and a standalone tool that is powered by chen.☆84Updated this week
- PoC shadow SaaS and insecure credential detection system using a browser extension.☆41Updated 2 months ago
- Manager of 14 third-party sources comprising approximately 4,000 Semgrep rules 🗂☆98Updated last month
- An interactive CLI application for interacting with authenticated Jupyter instances.☆55Updated 9 months ago
- Generative and mutative fuzzer for Kubernetes admission controller chains by automatically parsing the cluster api specification.☆75Updated 2 years ago
- EZGHSA is a command-line tool for summarizing and filtering vulnerability alerts on Github repositories.☆35Updated last month
- Multi-agent system (MAS) hijacking demos☆40Updated this week
- macOS persistence mechanism scanner with code signature verification and timeline tracking.☆195Updated last month
- Spotter is a comprehensive Kubernetes security scanner that uses CEL-based rules to identify security vulnerabilities, misconfigurations,…☆70Updated 4 months ago
- Use LLMs for document ranking☆164Updated 9 months ago
- Lightweight macOS detection agent built on Santa’s Endpoint Security telemetry.☆105Updated 2 months ago
- Semgrep-based Policy Controller for Kubernetes☆47Updated 10 months ago
- ☆39Updated last year
- MCP Snitch is a macOS application that intercepts and monitors MCP server communications, providing security analysis, access control, an…☆93Updated 3 months ago
- ☆18Updated last year