🐶 Automated code review tool integrated with any code analysis tools regardless of programming language

VoiceRestore: Flow-Matching Transformers for Universal Speech Restoration

Explyt Spring is a free, source-available plugin for IntelliJ IDEA Community Edition, designed to simplify and improve development with the Spring Framework.

Language-agnostic AI auditor that autonomously builds and refines adaptive knowledge graphs for deep, iterative code reasoning.

Collection of community-driven CodeQL query, library and extension packs

Semgrep Community Edition rules, maintained by Semgrep and the community. Free to use under the Semgrep Rules License.

CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security

Dynamically discover the commands used to create a piece of software

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the …

Cybersecurity AI (CAI), the framework for AI Security

SPARTA is a library of software components specially designed for building high-performance static analyzers based on the theory of Abstract Interpretation.

A security focused static analysis tool for Android and Java applications.

A clean implementation based on AlphaZero for any game in any framework + tutorial + Othello/Gobang/TicTacToe/Connect4 and more

Vifm is a file manager with curses interface, which provides Vim-like environment for managing objects within file systems, extended with some useful ideas from mutt.

Awesome Vulnerable Applications

Symbolic debugger

The official repository of Mozilla's Firefox web browser.

Java web common vulnerabilities and security code which is base on springboot and spring security

Static Value-Flow Analysis Framework for Source Code

UNIX-like reverse engineering framework and command-line toolset

Pre-Built Vulnerable Environments Based on Docker-Compose

A comprehensive, step-by-step guide to mastering cybersecurity from beginner to expert level with curated resources, tools, and career guidance

Symbiotic is a tool for finding bugs in computer programs based on instrumentation, program slicing and KLEE

Open-Source Unified Vulnerability Management, DevSecOps & ASPM

OSV-SCALIBR: A library for Software Composition Analysis

Vulnerability scanner written in Go which uses the data provided by https://osv.dev

OSS-Fuzz - continuous fuzzing for open source software.

Autogrep automates Semgrep rule generation and filtering by using LLMs to analyze vulnerability patches, enabling automatic creation of high-quality security rules without manual curation.

Open source defense for your entire stack