Performing security tests inside your CI

A Server Side Request Forgery (SSRF) protection library. Made with 🖤 by Doyensec LLC.

We would like to request that all contributors please clone a *fresh copy* of this repository since the September 21st maintenance.

This repository contains the source code for an eCommerce API . API designed for is using in a modern, scalable eCommerce application .This API is built using GoLang and the Fiber web framework, which makes it lightweight, fast, and easy to scale

Frontend to display data from huskyCI analyses

gosec动态规则修改版

Reverse call-graph that traces all callers of a function by signature

A lightweight and faster Metasploit Framework alternative written in Go, ideal for penetration testing and ethical hacking tasks.

An oversimplified benchmark between gosec and semgrep tested on go web-frameworks

Vulnerable Golang App by Sonatype Nexus

Package Docker Image for Implementing Continous Integration Security with SCA, SAST, and DAST in Go-Lang

A powerful, multi-threaded password cracking tool written in Go with support for multiple hash types, PCAP analysis, and custom transformation rules.

本文以 Checkmarx 作為商業安全掃描的基準工具，探討如何使用 govulncheck、gosec、semgrep 三種開源工具作為補充，實現 零成本擴展 和 早期發現 的安全保障策略。旨在為開發團隊提供全面的安全工具比較分析和實務應用指南。