vmnguyen/semgrep-rules external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

vmnguyen/semgrep-rules

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/vmnguyen/semgrep-rules)

Close

vmnguyen / semgrep-rulesView on GitHubMore

• External links
• Readme badge

My custom semgrep rules

☆23Sep 13, 2020Updated 5 years ago

Alternatives and similar repositories for semgrep-rules

Users that are interested in semgrep-rules are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• kondukto-io / semgrep-rules

  View on GitHub
  Custom semgrep rules registry
  ☆14Aug 23, 2022Updated 3 years ago
• federicodotta / semgrep-rules

  View on GitHub
  A collection of my Semgrep rules
  ☆51Jul 4, 2023Updated 2 years ago
• akabe1 / akabe1-semgrep-rules

  View on GitHub
  My collection of Semgrep rules for vulnerability detection on source code (swift, java, cobol)
  ☆43Dec 3, 2025Updated 5 months ago
• hashicorp-forge / semgrep-rules

  View on GitHub
  HashiCorp-relevant rules for the Semgrep code analysis tool
  ☆41Oct 3, 2023Updated 2 years ago
• elttam / semgrep-rules

  View on GitHub
  ☆233Apr 24, 2026Updated last week
• GPUs on demand by Runpod - Special Offer Available • Ad
  Run AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
• dipa96 / semgrep-rules

  View on GitHub
  Collection of rules for Static Application Security Testing (SAST) with Semgrep
  ☆12Apr 16, 2025Updated last year
• ax1sX / Automation-in-Java-Security

  View on GitHub
  ☆10Jul 21, 2022Updated 3 years ago
• suizhibo / Tao

  View on GitHub
  Tao（道）一款用于java语言函数调用关系生成的工具，致力于提高java代码审计效率。
  ☆11Jul 2, 2024Updated last year
• DDuarte / springshell-rce-poc

  View on GitHub
  CVE-2022-22965 - CVE-2010-1622 redux
  ☆19Apr 18, 2023Updated 3 years ago
• WAY29 / javaGGC

  View on GitHub
  javaGGC for generate commons.collections gadget chain
  ☆12Nov 10, 2021Updated 4 years ago
• mrnfrancesco / GreedyForSQLi

  View on GitHub
  Ricerca che mostra come scrivere regole per SemGrep per cercare SQL Injection nei plugin di Wordpress che usano action AJAX
  ☆19Jul 22, 2023Updated 2 years ago
• j3ssie / str-replace

  View on GitHub
  Simple tools to handle string and generate subdomain permutations
  ☆15Jun 8, 2022Updated 3 years ago
• trailofbits / semgrep-rules

  View on GitHub
  Semgrep queries developed by Trail of Bits.
  ☆502Nov 12, 2025Updated 5 months ago
• iQingshan / ARL

  View on GitHub
  灯塔v2.6.2_docker版本
  ☆15Oct 13, 2025Updated 6 months ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• BobTheShoplifter / CVE-2023-52251-POC

  View on GitHub
  CVE-2023-52251 There is a Remote Code Execution vulnerability provectus/kafka-ui.
  ☆21Jan 23, 2024Updated 2 years ago
• LimberDuck / nessus-cheat-sheet

  View on GitHub
  Nessus Cheat Sheet in HTML, PDF, PNG, ADOC
  ☆12Apr 10, 2022Updated 4 years ago
• frappe / semgrep-rules

  View on GitHub
  Semgrep rules specific to Frappe Framework
  ☆59Mar 18, 2026Updated last month
• SeanHeelan / InterParser

  View on GitHub
  A collection of scripts based on libclang for extracting API information from interpreters
  ☆25Jul 10, 2012Updated 13 years ago
• Swordfish-Security / Checkmarx-Custom-Query-Rules

  View on GitHub
  ☆14Sep 30, 2020Updated 5 years ago
• jrudolph / better-future-exceptions

  View on GitHub
  A POC for better exception reporting for futures
  ☆12Aug 20, 2014Updated 11 years ago
• dgryski / semgrep-go

  View on GitHub
  Go rules for semgrep and go-ruleguard
  ☆478Nov 17, 2024Updated last year
• semgrep-old / rules-owasp-asvs

  View on GitHub
  Semgrep rules corresponding to the OWASP ASVS standard
  ☆27Nov 2, 2020Updated 5 years ago
• cybrota / scharf

  View on GitHub
  Static analysis tool to Identify and Fix GitHub Actions prone to Supply‑Chain Risks
  ☆14Apr 20, 2026Updated 2 weeks ago
• End-to-end encrypted cloud storage - Proton Drive • Ad
  Special offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
• augustd / burp-suite-gwt-scan

  View on GitHub
  Burp Suite plugin identifies insertion points for GWT (Google Web Toolkit) requests
  ☆13Sep 24, 2015Updated 10 years ago
• K4ptor / CVE-2023-22515

  View on GitHub
  Confluence Unauthorized Administrator User Addition Exploitation Script
  ☆25Mar 26, 2026Updated last month
• silentsignal / ActiveScan3Plus

  View on GitHub
  Modified version of ActiveScan++ Burp Suite extension
  ☆31Jan 30, 2017Updated 9 years ago
• gand3lf / semgrepper

  View on GitHub
  An extension to use Semgrep inside Burp Suite.
  ☆89May 23, 2025Updated 11 months ago
• ItsIgnacioPortal / Hacker-Scoper

  View on GitHub
  CLI tool for filtering URLs/IPs with automatically-updated Bug Bounty program scope rules.
  ☆36Dec 31, 2025Updated 4 months ago
• silentsignal / SemGWT

  View on GitHub
  Semgrep rules to identify GWT attack surface
  ☆12Apr 28, 2022Updated 4 years ago
• Aabyss-Team / arl_files

  View on GitHub
  arl_files备份项目
  ☆24May 17, 2024Updated last year
• Galvanized-Pukeko / gaunt-sloth-assistant

  View on GitHub
  CLI AI assistant doing your code reviews
  ☆12Updated this week
• rallyhealth / play-json-ops

  View on GitHub
  Common Play Json implicits and helper methods
  ☆15Aug 14, 2023Updated 2 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• kitabisa / gokart-action

  View on GitHub
  Integrate GoKart security static analysis to GitHub Actions
  ☆10Jan 11, 2023Updated 3 years ago
• nikitastupin / orgs-data

  View on GitHub
  Mapping from bug bounty and vulnerability disclosure programs to respective GitHub organizations
  ☆87Apr 25, 2026Updated last week
• dustin / go-jsonpointer

  View on GitHub
  jsonpointer implementation for go
  ☆36Aug 14, 2016Updated 9 years ago
• ruby-grape / danger

  View on GitHub
  Automate common code review chores with http://danger.systems.
  ☆15Dec 18, 2025Updated 4 months ago
• springkill / idocv_poc

  View on GitHub
  I DOC VIEW RCE 的poc
  ☆13Nov 23, 2023Updated 2 years ago
• h3h3qaq / JavaDecompiler

  View on GitHub
  一个基于 Vineflower 引擎的多线程 Java 批量反编译工具，支持快速处理大量的 class 文件和 JAR 文件。
  ☆60Apr 28, 2025Updated last year
• jgstew / jgstew.github.io

  View on GitHub
  jgstew's personal pages
  ☆12Dec 15, 2025Updated 4 months ago