OWASP-Benchmark / BenchmarkUtils
OWASP Benchmark Project Utilities - Provides scorecard generation and crawling tools for Benchmark style test suites.
☆18Updated this week
Alternatives and similar repositories for BenchmarkUtils:
Users that are interested in BenchmarkUtils are comparing it to the libraries listed below
- Maturity Model Collaborative project☆14Updated 2 years ago
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …☆61Updated 9 months ago
- InfoSec OpenAI Examples☆19Updated last year
- Autoconfigured ELK Stack That Contains All EPSS and NVD CVE Data☆49Updated 8 months ago
- Externalize Java application access to protected resources as log messages.☆41Updated 10 months ago
- Python API library for DefectDojo☆41Updated 2 years ago
- Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.1, purl, and vers…☆112Updated 3 weeks ago
- DefectDojo Community Content☆17Updated 5 months ago
- Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning …☆41Updated 9 months ago
- Semgrep rules corresponding to the OWASP ASVS standard☆27Updated 4 years ago
- A very vulnerable implementation of a GraphQL API.☆59Updated 3 years ago
- An extension to use Semgrep inside Burp Suite.☆88Updated last year
- OWASP Foundation Web Respository☆14Updated last month
- The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…☆142Updated last year
- Contains all my research and content produced regarding the log4shell vulnerability☆31Updated 3 years ago
- Mixeway is security orchestrator for vulnerability scanners which enable easy plug in integration with CICD pipelines. MixewayBackend pro…☆16Updated 6 months ago
- CVSS v4.0 calculator☆38Updated 3 weeks ago
- Python script to check GitHub accounts for world-editable wiki pages☆21Updated last year
- The Open Security Summit is focused on the collaboration between, Developers and Application Security☆45Updated 3 months ago
- My custom semgrep rules☆20Updated 4 years ago
- OWASP ASVS Security Evaluation Templates with Nuclei☆30Updated this week
- Static Token And Credential Scanner☆96Updated last year
- Software Component Verification Standard (SCVS)☆142Updated 11 months ago
- CISA Known Exploited Vulnerabilities Catalog Enrichment☆18Updated 9 months ago
- OWASP Foundation Web Respository☆30Updated 2 years ago
- A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.☆56Updated 6 months ago
- Docs: Vulnerability management aggregation of AppSec & OpSec (Tools Listing)☆30Updated last year
- Dependency Combobulator☆93Updated last year
- GitHub action to run Threagile, the agile threat modeling toolkit, on a repo's threagile.yaml file☆13Updated 10 months ago
- Puma Prey contains vulnerable .NET target applications to test the Puma Scan rules against. This project contains Web Forms, MVC5, and Co…☆21Updated 11 months ago