8000 sast · GitHub Topics · GitHub

More Web Proxy on the site http://driver.im/

#

sast

Here are 70 public repositories matching this topic...

tcosolutions / betterscan

Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC) - Betterscan

Updated Jun 13, 2025
Python

ShiftLeftSecurity / sast-scan

Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependencies. CI and Git friendly.

workflow appsec scanners license-scan devsecops sast dependency-scan

Updated Sep 1, 2023
Python

MobSF / mobsfscan

mobsfscan is a static analysis tool that can find insecure code patterns in your Android and iOS source code. Supports Java, Kotlin, Swift, and Objective C Code. mobsfscan uses MobSF static analysis rules and is powered by semgrep and libsast pattern matcher.

android kotlin java swift security ios objective-c static-analysis codereview appsec sast mobile-sast

Updated Jan 31, 2025
Python

we45 / ThreatPlaybook

A unified DevSecOps Framework that allows you to go from iterative, collaborative Threat Modeling to Application Security Test Orchestration

python application-security threat-model devsecops sast dast

Updated Jun 14, 2025
Python

Orange-Cyberdefense / grepmarx

A source code static analysis platform for AppSec enthusiasts.

security appsec sca sast

Updated Feb 19, 2025
Python

8000

latiotech / LAST

Use AI to Scan Your Code from the Command Line for security and code smells. Bring your own keys. Supports OpenAI and Gemini

python open-source ai vulnerability-scanners security-tools sast

Updated Apr 23, 2025
Python

AppThreat / sast-scan

Fully open-source SAST scanner supporting a range of languages and frameworks. Integrates with major CI pipelines and IDE such as Azure DevOps, Google CloudBuild, VS Code and Visual Studio. No server required!

docker static-analysis sarif sast azure-devops

Updated Sep 4, 2020
Python

ajinabraham / libsast

Generic SAST Library

security regex static-analyzer appsec codeanalysis staticanalysis sast semgrep semanticgrep patternmatch genericsast libsast

Updated Jun 17, 2025
Python

DockerENT

rosehgal / DockerENT

The only open-source tool to analyze vulnerabilities and configuration issues with running docker container(s) and docker networks.

docker hacktoberfest sast hacktoberfest2020 docker-sast runtime-security-testing

Updated Dec 8, 2022
Python

Zigrin-Security / CakeFuzzer

Cake Fuzzer is a project that is meant to help automatically and continuously discover vulnerabilities in web applications created based on specific frameworks with very limited false positives.

hacking cybersecurity iast sast dast

Updated Dec 10, 2023
Python

m14r41 / scan4secrets

SAST and DAST Scan Supported with 400 plus rules available for secrets and allow you add your own wordlist as well. lightweight source code scanner and for URL that detects hardcoded secrets like API keys, credentials, and sensitive information across files and folders.

security secrets hacking source-code codereview hacking-tool sast

Updated Apr 22, 2025
Python

j3ssie / codeql-docker

Ready to use docker image for CodeQL

docker static-analysis sast codeql codeql-cli codeql-docker codql-cli

Updated Jan 10, 2024
Python

cycodehq / cycode-cli

Boost security in your dev lifecycle via SAST, SCA, Secrets & IaC scanning

security code secrets secure sca sast cycode

Updated Jun 18, 2025
Python

semgrep / semgrep-action

This project is deprecated. Use https://github.com/returntocorp/semgrep instead

ci static-analysis ci-cd sast github-actions semgrep

Updated Apr 9, 2024
Python

pcfens / sast-parser

Parse GitLab SAST reports into more human readable projects

gitlab hacktoberfest sast

Updated Feb 19, 2025
Python

nxenon / DevSecOps

♾️ Collection of DevSecOps Notes + Resources + Courses + Tools

secret-management threat-modeling threat-model secure-coding sdlc secure-development iast devsecops software-composition-analysis sast sbom dependency-track defectdojo devsecops-best-practices software-bill-of-material devsecops-resources devsecops-notes static-analysis-security-testing

Updated Jan 20, 2025
Python

shivamsaraswat / SeCoRA

Secure Code Review AI Agent (SeCoRA) - AI SAST

code-review sast secure-code secure-code-review genai

Updated Jan 29, 2025
Python

mllamazares / vulncov

🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.

python unit-testing coverage pytest code-review sast semgrep

Updated Dec 12, 2024
Python

h4sh5 / pypi-auto-scanner

Automatically scan new pypi packages for potentially malicious code

python security pypi malware python3 pip scanning sast semgrep

Updated Mar 24, 2024
Python

precli

securesauce / precli

Precaution CLI - command line static application security testing tool

python java go security command-line static-code-analysis static-analysis security-tools sast

Updated Jun 15, 2025
Python

Improve this page

Add a description, image, and links to the sast topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the sast topic, visit your repo's landing page and select "manage topics."

0