Alternatives and similar repositories for ounce-maven-plugin

Users that are interested in ounce-maven-plugin are comparing it to the libraries listed below

• victims / maven-security-versions
  Identify vulnerable libraries in Maven dependencies
  ☆46Updated 2 years ago
• jenkinsci / zap-plugin
  The OWASP ZAP Jenkins Plugin extends the functionality of the ZAP security tool into a CI Environment.
  ☆60Updated 8 months ago
• OpenSecurityResearch / jmsdigger
  JMSDigger is JMS API basedEnterprise Messaging Application assessment tool
  ☆30Updated 10 years ago
• RIGS-IT / sonar-xanitizer
  Integrates Xanitizer results into SonarQube
  ☆21Updated 3 years ago
• iriusrisk / zap-java-api
  A client API for OWASP ZAP that uses Java types.
  ☆19Updated 2 years ago
• victims / victims-enforcer-legacy
  A rule for the Maven enforcer plugin to check for vulnerable artifacts within a project.
  ☆40Updated 4 years ago
• Contrast-Security-OSS / contrast-rO0
  A tiny Java agent that blocks attacks against unsafe deserialization
  ☆84Updated 7 years ago
• augustd / owasp-security-logging
  OWASP Security Logging library for Java
  ☆117Updated last year
• kantega / notsoserial
  Java Agent which mitigates deserialisation attacks by making certain classes unserializable
  ☆188Updated 9 years ago
• iriusrisk / RopeyTasks
  Deliberately vulnerable web application
  ☆22Updated 7 years ago
• GDSSecurity / GDS-PMD-Security-Rules
  Custom security ruleset for the popular Java static analysis tool PMD.
  ☆61Updated 9 years ago
• OWASP / sonarqube
  OWASP SonarQube Project
  ☆111Updated 5 years ago
• Contrast-Security-OSS / jinfinity
  An API for consuming all the memory of Java apps using deserialization
  ☆28Updated 9 years ago
• cschneider4711 / SWAT
  Serial Whitelist Application Trainer
  ☆29Updated 5 years ago
• jenkinsci / contrast-continuous-application-security-plugin
  Jenkins Plugin from Contrast Security
  ☆13Updated 9 months ago
• matthiasrohr / OTMT
  Open Threat Modeling Template
  ☆50Updated 10 months ago
• topolik / ois-dos
  Java Deserialization
  ☆26Updated 8 years ago
• spoofzu / jvmxray
  Externalize Java application access to protected resources as log messages.
  ☆41Updated last month
• appsecpipeline / AppSecPipeline-Specification
  AppSecPipeline Specification for DevOps automation.
  ☆40Updated 2 years ago
• dschadow / ApplicationIntrusionDetection
  Application Intrusion Detection projects
  ☆19Updated 10 months ago
• thesp0nge / owasp-orizon
  Owasp Orizon is a source code static analyzer tool designed to spot security issues in Java applications.
  ☆144Updated 8 years ago
• Cisco-AMP / java_security
  ☆14Updated 6 years ago
• find-sec-bugs / find-sec-bugs-demos
  Repository to showcase various configuration recipes with various technologies
  ☆35Updated 2 years ago
• srcclr / efda
  Evaluation Framework for Dependency Analysis (EFDA)
  ☆43Updated 3 years ago
• frohoff / appseccali-java
  ☆9Updated 10 years ago
• NetSPI / grails-nV
  Vulnerable Grails application
  ☆43Updated 9 years ago
• stevespringett / threatmodel-sdk
  A Java library for parsing and programmatically using threat models
  ☆79Updated 2 years ago
• hakbot / hakbot-origin-controller
  Vendor-Neutral Security Tool Automation Controller (over REST)
  ☆28Updated 5 years ago
• rafaelrpinto / VulnerableJavaWebApplication
  A Java Web Application with common legacy security flaws for tests with Arachni Scanner and ModSecurity
  ☆21Updated 11 months ago
• stevespringett / cvss-calculator
  A Java library for calculating CVSSv2 and CVSSv3 scores and vectors
  ☆45Updated 5 months ago