Go static taint-analysis engine that finds vulnerabilities in WordPress plugins — WordPress-aware (capability tiers, nonce≠authz, REST/AJAX entrypoints). Detects SQLi, XSS, IDOR, privesc, RCE. Built on php-parser-go.
GitHub repository with 11 stars and 1 forks.
Language: Go
Topics: appsec, bug-bounty, golang, php, sast, security, security-tools, static-analysis, taint-analysis, vulnerability-scanner
Trending score 0.46, activity score 0.00, stars gained +0, forks gained +0.
2026-06-13: 11 stars and 1 forks.
The parent project for OpenZiti. Here you will find the executables for a fully zero-trust, programmable network @OpenZiti
GitHub repository with 4,226 stars and 251 forks.
Trending score: 1.47; stars gained: +7; forks gained: +0.
Language: Go
Topics: networking, vpn-2, appsec, network, zero-trust, zero-trust-cloud
Go static taint-analysis engine that finds vulnerabilities in WordPress plugins — WordPress-aware (capability tiers, nonce≠authz, REST/AJAX entrypoints). Detects SQLi, XSS, IDOR, privesc, RCE. Built on php-parser-go.
GitHub repository with 11 stars and 1 forks.
Trending score: 0.46; stars gained: +0; forks gained: +0.
Language: Go
Topics: appsec, bug-bounty, golang, php, sast, security
Collaborative application security testing between humans and agents via CLI and MCP
GitHub repository with 26 stars and 5 forks.
Trending score: 0.45; stars gained: +1; forks gained: +0.
Language: Go
Topics: agent, agent-collaboration, application-security, appsec, llm, mcp
🔍 Scan files for secrets, hashes, and high-entropy strings with go-secrets-scanner. Detect potential leaks and enhance security in your projects.
GitHub repository with 10 stars and 3 forks.
Trending score: 0.33; stars gained: +1; forks gained: +0.
Language: Go
Topics: appsec, bugbounty, cd, cicd, cli, cybersecurity
DeepSeek-native AI coding agent for your terminal. Engineered around prefix-cache stability — leave it running.
GitHub repository with 21,692 stars and 1,298 forks.
Trending score: 5.89; stars gained: +730; forks gained: +44.
Language: Go
Topics: agent, agent-framework, ai-agent, ai-coding, cli, coding-agent
Local-first session intelligence and analytics for coding agents, supporting Claude Code, Codex, and more than 20 other agents. Also: 100x faster replacement for ccusage!
GitHub repository with 2,183 stars and 202 forks.
Trending score: 4.39; stars gained: +674; forks gained: +28.
Language: Go
Open-source & free — Battle-tested at Alibaba's scale. Hybrid architecture code review tool: deterministic pipelines + LLM Agent, precise line-level comments, built-in fine-tuned ruleset (NPE, thread-safety, XSS, SQL injection), OpenAI & Anthropic compatible.
GitHub repository with 6,556 stars and 372 forks.
Trending score: 4.31; stars gained: +200; forks gained: +18.
Language: Go
Topics: agent, code-review, code-review-assistant, harness, repository-level-context
The open-source managed agents platform. Turn coding agents into real teammates — assign tasks, track progress, compound skills.
GitHub repository with 36,462 stars and 4,453 forks.
Trending score: 4.18; stars gained: +270; forks gained: +38.
Language: Go
Wrap Gemini CLI, Antigravity, ChatGPT Codex, Claude Code, Grok Build as an OpenAI/Gemini/Claude/Codex compatible API service, allowing you to enjoy the free Gemini 3.1 Pro, GPT 5.5, Grok 4.3, Claude model through API
GitHub repository with 37,403 stars and 6,169 forks.
Trending score: 4.15; stars gained: +242; forks gained: +28.
Language: Go
Topics: antigravity, claude-code, cluade, codex, gemini, openai
Fast, secure, efficient backup program
GitHub repository with 34,363 stars and 1,791 forks.
Trending score: 3.92; stars gained: +383; forks gained: +18.
Language: Go
Topics: backup, dedupe, deduplication, go, restic, secure-by-default
The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.
GitHub repository with 9,462 stars and 1,626 forks.
Trending score: 1.90; stars gained: +8; forks gained: +0.
Topics: best-practices, guide, owasp, bugbounty, penetration-testing, pentesting
The parent project for OpenZiti. Here you will find the executables for a fully zero-trust, programmable network @OpenZiti
GitHub repository with 4,226 stars and 251 forks.
Trending score: 1.47; stars gained: +7; forks gained: +0.
Language: Go
Topics: networking, vpn-2, appsec, network, zero-trust, zero-trust-cloud
Security-native LLM system for AI-generated application security.
GitHub repository with 260 stars and 71 forks.
Trending score: 1.44; stars gained: +1; forks gained: +0.
Language: Python
Topics: ai-security, appsec, code-security, llm, mcp, qlora
OWASP VulnerableApp Project: Break it. Scan it. Reproduce it. Benchmark against it. Improve it.
GitHub repository with 420 stars and 706 forks.
Trending score: 0.65; stars gained: +0; forks gained: +0.
Language: Java
Topics: owasp-zap, vulnerable-application, learn-security, test-vulnerability-scanning-tools, burpsuite, payload-testing
🔒 Intentionally vulnerable ASP.NET Core app for hands-on web security & penetration testing practice
GitHub repository with 23 stars and 1 forks.
Trending score: 0.62; stars gained: +1; forks gained: +0.
Language: JavaScript
Topics: applicationsecurity, appsec, asp-net-core, contributions-welcome, csharp, cybersecurity
The source files and tools needed to build the OWASP Cornucopia decks in various languages
GitHub repository with 132 stars and 96 forks.
Trending score: 0.51; stars gained: +0; forks gained: +0.
Language: Python
Topics: gamification, threat-modeling, appsec, card-games, cardgame, games