Categories: Security
Static analysis at ludicrous speed.
Free

Description

Semgrep is a highly-configurable SAST tool that looks for recurring patterns in the syntax tree. It can either run locally using Docker or be integrated into the CI/CD pipeline with Github Actions. Results are delivered as JSON files, allowing you to pipe the results into other tools, like jq in order to manipulate them.

More Resources & Tools in Security

beef

It is a penetration testing tool that focuses on the web browser.

Arachni

Web Application Security Scanner Framework

Wapiti

Web vulnerability scanner written in Python3