A collection of Semgrep rules which followed security guidelines for .NET and Java.
☆24Oct 4, 2021Updated 4 years ago
Alternatives and similar repositories for semgrep-rules
Users that are interested in semgrep-rules are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Collection of Semgrep rules for security analysis☆10Mar 30, 2024Updated 2 years ago
- My custom semgrep rules☆24Sep 13, 2020Updated 5 years ago
- By manipulating LSASS memory flags like UseLogonCredential and IsCredGuardEnabled, this repo demonstrates how Credential Guard can be byp…☆15May 25, 2025Updated last year
- Blocking Windows EDR agents by registering an own IPC-object in the Object Manager’s namespace (CVE-2023-3280, CVE-2024-5909, CVE-2024-20…☆37Feb 27, 2025Updated last year
- ☆246Jun 23, 2026Updated 2 weeks ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- Autogrep automates Semgrep rule generation and filtering by using LLMs to analyze vulnerability patches, enabling automatic creation of h…☆87Feb 27, 2025Updated last year
- A collection of my Semgrep rules☆53Jul 4, 2023Updated 3 years ago
- My collection of Semgrep rules for vulnerability detection on source code (swift, java, cobol)☆44Dec 3, 2025Updated 7 months ago
- ☆18Dec 20, 2025Updated 6 months ago
- Semgrep rules specific to Frappe Framework☆64Jun 5, 2026Updated last month
- Bug Bounty tool to automate the recon process.☆12Oct 4, 2023Updated 2 years ago
- SSRF (Server Side Request Forgery) testing resources☆13Sep 7, 2017Updated 8 years ago
- ☆17Jan 6, 2025Updated last year
- ☆26Dec 31, 2025Updated 6 months ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- A lightweight, extensible cybersecurity toolkit that connects AI assistants to security tools through the Model Context Protocol (MCP), e…☆16Jun 13, 2025Updated last year
- Modified version of ActiveScan++ Burp Suite extension☆31Jan 30, 2017Updated 9 years ago
- Curated Collection of Popular Community Rules for Semgrep☆21Dec 27, 2023Updated 2 years ago
- Semgrep rules to identify GWT attack surface☆12Apr 28, 2022Updated 4 years ago
- VBScript minifier☆25Updated this week
- Nuclei templates for source code analysis. Detects hardcoded secrets, config leaks, debug endpoints. Also helps identify OWASP Top 10 iss…☆83Jun 11, 2025Updated last year
- jgstew's personal pages☆12Dec 15, 2025Updated 6 months ago
- An efficient domain name availability bulk checker that looks for the presence of DNS Records before querying the Whois Server to save on…☆35Oct 26, 2010Updated 15 years ago
- This is an Active Directory Pentesting Lab created by me which includes attacks like IPV6 DNS takeover, Smb relay, unconstrained delegati…☆23Jan 23, 2024Updated 2 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- nmapParser.py is a tool developed for consultants doing nmap scans against a large range of hosts. I found it easy to identify hosts that…☆13Jan 19, 2016Updated 10 years ago
- Applied Static Analysis☆11Aug 26, 2019Updated 6 years ago
- Small script for retrieving incoming transactions based on provided hour period.☆14Jan 24, 2022Updated 4 years ago
- Semgrep Community Edition rules, maintained by Semgrep and the community. Free to use under the Semgrep Rules License.☆1,197Updated this week
- ☆13Apr 23, 2025Updated last year
- Swagger with Conventional Routing support☆11Dec 8, 2022Updated 3 years ago
- NMAP NSE script that scans for http(s) server, takes a screenshot of them, and organizes the results into an HTML report.☆27Sep 20, 2014Updated 11 years ago
- Lint all your JavaScript, CSS, HTML, Markdown and Dockerfiles with a single command☆17Mar 31, 2020Updated 6 years ago
- ☆14Apr 24, 2026Updated 2 months ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Offensive Web is a documentation website about web security research, bypass and new exploitation techniques.☆34Feb 14, 2026Updated 4 months ago
- Python tool for expired domain discovery in crossdomain.xml files☆23Feb 21, 2017Updated 9 years ago
- wtftp.py is a tool to attack Microsoft Deployment Toolkit (MDT) and Windows Deployment Services (WDS).☆34Jan 22, 2026Updated 5 months ago
- "Sucosh" is an automated Source Code vulnerability scanner and assessment framework for Python(Flask-Django) & NodeJs capable of performi…☆39May 20, 2024Updated 2 years ago
- Datasette plugin for outputting tables in formats suitable for copy and paste☆16Feb 17, 2024Updated 2 years ago
- Network scanner☆46Apr 2, 2026Updated 3 months ago
- Automated web vulnerability scanning with LLM agents☆476Jun 18, 2025Updated last year