Pixee
Pixee is an automated code security tool that integrates with development workflows to address security vulnerabilities and code quality issues. The tool functions by: - Monitoring repositories and pull requests for security issues - Automatically generating fixes for identified vulnerabilities - Triaging results from various code scanners (Sonar, Snyk, Semgrep) - Creating pull requests with detailed documentation for proposed fixes - Supporting multiple programming languages including Java, Python, JavaScript, Node.js, .NET/C#, and Go It operates through: - GitHub integration - CLI interface for local usage - Automated code analysis and remediation - Integration with existing SAST tools - Custom codemod framework for extensibility
FEATURES
ALTERNATIVES
Static code analyzer for Infrastructure as Code with 500+ security policies and support for various IaC tools and cloud platforms.
A honeypot trap for Symfony2 forms to reduce spam submissions.
Argus-SAF is a static analysis framework for security vetting Android applications.
A tool for secure content publishing and verification using offline signing and trusted collections.
A serverless application that demonstrates common serverless security flaws and weaknesses
WordPress plugin to reduce comment spam with a smarter honeypot.
A series of levels teaching about common mistakes and gotchas when using Amazon Web Services (AWS).
StaCoAn is a cross-platform tool for static code analysis on mobile applications, emphasizing the identification of security vulnerabilities.
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Mandos Brief Newsletter
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.
Kriptos
An AI-driven data classification and governance platform that automatically discovers, analyzes, and labels sensitive information while providing risk management and compliance capabilities.
System Two Security
An AI-powered platform that automates threat hunting and analysis by processing cyber threat intelligence and generating customized hunt packages for SOC teams.
Aikido Security
Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.
Permiso
Permiso is an Identity Threat Detection and Response platform that provides comprehensive visibility and protection for identities across multiple cloud environments.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.