code-security

A GitHub Security Lab initiative, providing an in-repo learning experience, where learners secure intentionally vulnerable code.

code-scanning code-security codeql skills-course

JavaScript 2.48 k

5 天前

SVF-tools / SVF

Static Value-Flow Analysis Framework for Source Code

static-analysis static-value-flow source-code-analysis code-security pointer-analysis LLVM dependency-analysis code-analysis points-to-analysis static-analyzer

C++ 1.59 k

19 天前

payloadbox / ssti-payloads

🎯 Server Side Template Injection Payloads

injection payload payloads Bug Bounty bounty bugbountytips websecurity Web 安全 source Code source-code-analysis code-security

690

1 年前

DeepSourceCorp / globstar

Globstar is a fast, feature-rich, and open-source static analysis toolkit for writing and running code checkers. Based on tree-sitter.

Code quality code-security sast static-analysis Tree-sitter

Go 455

2 个月前

apiiro / PRevent

Prevent merging of malicious code in pull requests

cloud-security code-security github-app malware-detection obfuscation pull-request security-scan 安全 semgrep static-analysis supply-chain-security

Python 232

6 个月前

payloadbox / csv-injection-payloads

🎯 CSV Injection Payloads

CSV websecurity websec Bug Bounty bugbountytips code-security 安全 payload payloads

225

1 年前

mpast / mobileAudit

Django application that performs SAST and Malware Analysis for Android APKs

android-security sast malware-analysis code-security defect-dojo virustotal Docker Django django-rest-framework mobile-security Malware apk

HTML 219

6 天前

apiiro / malicious-code-ruleset

Focused malicious code detection ruleset, with a high protection-to-noise ratio

appsec cloud-security code-security detection devsecops Malware malware-detection obfuscation ruleset 安全 security-scan semgrep supply-chain-security

Python 128

7 个月前

VolkanSah / GPT-Security-Best-Practices

#大语言模型#The purpose of this document is to outline the security risks and vulnerabilities that may arise when implementing ChatGPT in web applications and to provide best practices for mitigating these risks.

Ajax ajax-request ChatGPT code-security HTML JavaScript PHP 安全 server-side vulnerabilities

7 个月前

fabriziosalmi / iamnotacoder

#大语言模型#AI code generation and improvement

agentic-ai 自动化 Code code-generation code-security 大语言模型 Python

Python 31

17 天前

SpectralOps / vscode-extension

Monitor your code for exposed API keys, tokens, credentials, and high-risk security IaC misconfigurations

code-security linters other 编程语言

TypeScript 19

2 年前

nocomplexity / codeaudit

Codeaudit - Modern Python source code analyzer based on distrust.

audit code-security sast 安全 static-analysis vulnerability-assessment vulnerability-scanners appsec owasp sourcecode-analysis

Python 11

3 天前

GitsecureHQ / gitsecure-docs

Official documentation for Gitsecure

监控 secrets-detection Static code analysis code-security

MDX 8

1 年前

Hack23 / talks

How to secure your development pipeline with static application security test (SAST) / Dynamic application security test (DAST), software composition analysis (SCA) using Sonarqube.

sonarqube devsecops sca sast dast Maven code-security application-security software-composition-analysis vulnerability-management static-analysis dynamic-analysis

13 天前