Horusec is an open source tool that improves identification of vulnerabilities in your project with just one command.
-
Updated
Jun 2, 2024 - Go
Horusec is an open source tool that improves identification of vulnerabilities in your project with just one command.
⚙️ A curated list of static analysis (SAST) tools for all programming languages, config files, build tools, and more. With repository stars⭐ and forks🍴
Real world test cases to evaluate static analyser efficacy
JavaScript & Node.js open-source SAST scanner. A static analyser for detecting most common malicious patterns 🔬.
INTERCEPT / Policy as Code Auditing / SAST for Code & APIs
PWN is an open security automation framework that aims to stand on the shoulders of security giants, promoting trust and innovation.
AI-driven Static Analyzer. Supports Rust and Smart contracts: Solana based on Rust, Ethereum based on Solidity.
SecHub provides a central API to test software with different security tools.
Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
⚙️ A curated list of static analysis (SAST) tools and linters for all programming languages, config files, build tools, and more. The focus is on tools which improve code quality.
A static analyzer to scan JavaScript code for problematic regular expressions.
Precaution CLI
Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.
Next version of the analysis tools website
xAST评价体系,让安全工具不再“黑盒”. The xAST evaluation benchmark makes security tools no longer a "black box".
Validate your IAM Policies and SCPs with AWS Policy Validator, and convert those results into SARIF documents for reporting.
Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners + OpenAI GPT with One Report (Code, IaC) - Betterscan Community Edition (CE)
Welcome to our presentation on DevSecOps! In this talk we will uncover the benefits, challenges, and best practices of introducing security into your software development lifecycle (SDLC). DevSecOps from Zero to Hero! - devopsdays Montréal 2024 DevSecOps from Zero to Hero!
Exemplos de código e tutoriais para implementações Veracode
Add a description, image, and links to the sast topic page so that developers can more easily learn about it.
To associate your repository with the sast topic, visit your repo's landing page and select "manage topics."