Repository navigation

#

code-security

skills / secure-code-game 

A GitHub Security Lab initiative, providing an in-repo learning experience, where learners secure intentionally vulnerable code.

code-scanningcode-securitycodeqlskills-course
Python
2262
1 个月前
SVF-tools / SVF 

Static Value-Flow Analysis Framework for Source Code

static-analysisstatic-value-flowsource-code-analysiscode-securitypointer-analysisLLVMdependency-analysiscode-analysispoints-to-analysisstatic-analyzer
C++
1513
12 天前
payloadbox / ssti-payloads 

🎯 Server Side Template Injection Payloads

injectionpayloadpayloadsBug BountybountybugbountytipswebsecurityWeb安全sourceCodesource-code-analysiscode-security
646
9 个月前
DeepSourceCorp / globstar 

Globstar is a fast, feature-rich, and open-source static analysis toolkit for writing and running code checkers. Based on tree-sitter.

Code qualitycode-securitysaststatic-analysisTree-sitter
Go
429
4 小时前
apiiro / PRevent 

Prevent merging of malicious code in pull requests

cloud-securitycode-securitygithub-appmalware-detectionobfuscationpull-requestsecurity-scan安全semgrepstatic-analysissupply-chain-security
Python
217
1 个月前
payloadbox / csv-injection-payloads 

🎯 CSV Injection Payloads

CSVwebsecuritywebsecBug Bountybugbountytipscode-security安全payloadpayloads
215
9 个月前
mpast / mobileAudit 

Django application that performs SAST and Malware Analysis for Android APKs

android-securitysastmalware-analysiscode-securitydefect-dojovirustotalDockerDjangodjango-rest-frameworkmobile-securityMalwareapk
HTML
213
1 个月前
apiiro / malicious-code-ruleset 

Focused malicious code detection ruleset, with a high protection-to-noise ratio

appseccloud-securitycode-securitydetectiondevsecopsMalwaremalware-detectionobfuscationruleset安全security-scansemgrepsupply-chain-security
Python
115
2 个月前
VolkanSah / GPT-Security-Best-Practices 

The purpose of this document is to outline the security risks and vulnerabilities that may arise when implementing ChatGPT in web applications and to provide best practices for mitigating these risks.

Ajaxajax-requestChatGPTcode-securityHTMLJavaScriptPHP安全server-sidevulnerabilities
26
2 个月前
fabriziosalmi / iamnotacoder 

AI code generation and improvement

agentic-ai自动化Codecode-generationcode-security大语言模型Python
Python
25
2 个月前
SpectralOps / vscode-extension 

Monitor your code for exposed API keys, tokens, credentials, and high-risk security IaC misconfigurations

code-securitylintersother编程语言
TypeScript
18
2 年前
GitsecureHQ / gitsecure-docs 

Official documentation for Gitsecure

监控secrets-detectionStatic code analysiscode-security
MDX
8
6 个月前
AI-Security-Research-Group / contexi 

Contexi let you interact with entire codebase or data with context using a local LLM on your system.

人工智能ai-securityapplication-securitycode-searchcode-security大语言模型ragre-rankingretrieval-augmented-generation安全
Python
5
6 个月前
rafabd1 / SecretHound 

A fast and powerful CLI tool for finding secrets in files, web pages, and other text sources. Supports multi-threading, advanced pattern matching, and intelligent security measures detection.

api-keysBug Bountycode-securitycredentialsdevsecopsGopentestsecret-scanning安全工具Cybersecurity
Go
3
16 天前
tj-actions / bandit 

<img alt="octocat" src="https://github.githubassets.com/images/icons/emoji/octocat.png?v8" /> Github action to run PyCQA's bandit security linter.

bandit安全PythonActionscode-securitysecurity-scannerworkflows
Dockerfile
3
1 个月前
Saluki / eslint-workshop-2020 

ESLint backbone repository for workshop

ESLintworkshopcode-securitysastNode.jsCode quality
JavaScript
3
2 年前
hotaydev / enygmah 

The only tool your project needs to ensure security and quality. Open-source and free.

自动化Code qualitycode-security安全
Rust
3
11 天前
marsgokturk / securepy 

Agent-based Python code vulnerability scanner powered by LLMs.

ai-agentscode-securitygradio大语言模型openai-apiPythonsecure-codingvulnerability-scanner
Python
2
17 天前
TheSpiritMan / demo-counter-app 

Complete DevOps CI/CD project with Documented Walkthrough

Code qualitydeclarativeDockerpipelinesonarqubesonarqube-analysissonarqube-scannercode-securityCI/CD
Java
2
2 年前
priyadarshiutkarsh / Dyxa-Guardian 

Code security analyzer for Python, JavaScript, Java vulnerabilities.

code-securityCybersecuritydeveloper-toolsJavaScriptPythonstatic-analysisvulnerability-detectionproductivity编程
Python
2
3 个月前