The Secure Coding Dojo is a platform for delivering secure coding knowledge.

cloc counts blank lines, comment lines, and physical lines of source code in many programming languages.

Find regular expressions which are vulnerable to ReDoS (Regular Expression Denial of Service)

Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.

Reconnaissance tool for GitHub organizations

grep rough audit - source code auditing tool

Find, verify, and analyze leaked credentials

Twitter vulnerable snippets

The cheat sheet about Java Deserialization vulnerabilities

Unsafe Unpacking Vulnerability: Lab Code, Semgrep Rules and Secure Implementation Guide

A source code static analysis platform for AppSec enthusiasts.