🔎 Static code analysis engine to find security issues in code.

My POCs for CVEs & stuff

⛳️ Protocol Buffers to CLI flags, and back again.

Use LLM to generate and execute commands in your shell

Microsoft SEAL is an easy-to-use and powerful homomorphic encryption library.

NVIDIA Ingest is an early access set of microservices for parsing hundreds of thousands of complex, messy unstructured PDFs and other enterprise documents into metadata and text to embed into retri…

Open Source Package Analysis

Semgrep queries developed by Trail of Bits.

Extract 500+ technologies from any repository. Detect Languages, SaaS, Cloud, Infrastructure, Dependencies and Services

LLM powered fuzzing via OSS-Fuzz.

A static analysis tool for GitHub Actions

The resources for glibc Malloc heap exploitation course by Maxwell Dulin and Security Innovation.

Semgrep-based Policy Controller for Kubernetes

Human-readable ANSI sequences 🪩

Security tool against dependency typosquatting attacks

Golang tool to pull and summarize NPM license info

Prototype Pollution and useful Script Gadgets

🌌️Fuzz4All: Universal Fuzzing with Large Language Models

Community-led collection of essential ast-grep rules.

Homomorphic Encryption library and applications in Swift

Container runtimes on macOS (and Linux) with minimal setup

Zero shot vulnerability discovery using LLMs

the LLM vulnerability scanner

Test your SAML/SCIM integration without setting up a full-blown Identity Provider

🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.