Alternatives and similar repositories for sonarqube

Users that are interested in sonarqube are comparing it to the libraries listed below

• jenkinsci / zap-plugin
  The OWASP ZAP Jenkins Plugin extends the functionality of the ZAP security tool into a CI Environment.
  ☆60Updated last year
• OtherDevOpsGene / zap-sonar-plugin
  Integrates OWASP Zed Attack Proxy reports into SonarQube
  ☆72Updated 2 months ago
• jenkinsci / dependency-check-plugin
  Jenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).
  ☆138Updated last week
• stevespringett / threatmodel-sdk
  A Java library for parsing and programmatically using threat models
  ☆81Updated 2 years ago
• ing-bank / bdd-mobile-security-automation-framework
  Mobile Security testing Framework
  ☆41Updated 7 years ago
• appsecpipeline / AppSecPipeline-Specification
  AppSecPipeline Specification for DevOps automation.
  ☆40Updated 2 years ago
• OWASP / owasp-swag
  Swag for the OWASP projects and chapters
  ☆43Updated 2 months ago
• OpenSecuritySummit / oss2019
  Open Security Summit 2019
  ☆26Updated 4 years ago
• codedx / codepulse
  Code Pulse is a real-time code coverage tool for penetration testing activities
  ☆122Updated 2 years ago
• OWASP / Container-Security-Verification-Standard
  Container Security Verification Standard
  ☆58Updated 6 years ago
• microsoft / threat-modeling-templates
  Microsoft Threat Modeling Template files
  ☆194Updated 2 years ago
• RIGS-IT / sonar-xanitizer
  Integrates Xanitizer results into SonarQube
  ☆21Updated 4 years ago
• OWASP / owasp-summit-2017
  Content for OWASP Summit 2017 site
  ☆128Updated 4 years ago
• SecurityRAT / SecurityRAT
  OWASP SecurityRAT (version 1.x) - Tool for handling security requirements in development
  ☆185Updated last month
• OWASP / OWASP-Testing-Guide
  OWASP Testing Guide
  ☆110Updated 9 years ago
• denimgroup / threadfix
  ThreadFix is a software vulnerability management platform. This GitHub site is far out of date. Please go to www.threadfix.it for up-to-d…
  ☆341Updated 2 years ago
• matthiasrohr / OTMT
  Open Threat Modeling Template
  ☆52Updated last year
• OWASP / Cloud-Native-Application-Security-Top-10
  ☆21Updated 7 years ago
• OWASP / Maturity-Models
  Node application to help managing Maturity Models like the ones created by BSIMM and OpenSAMM
  ☆195Updated 7 years ago
• oshp / headers
  An application to catch, search and analyze HTTP secure headers.
  ☆65Updated 4 years ago
• kost / dockscan
  dockscan is security vulnerability and audit scanner for Docker installations
  ☆219Updated 9 years ago
• zapbot / zap-mgmt-scripts
  ZAP Management Scripts
  ☆23Updated this week
• stevespringett / vulndb-data-mirror
  A simple Java command-line utility to mirror the entire contents of VulnDB.
  ☆47Updated 2 months ago
• OWASP / SEDATED
  SEDATED® Project (Sensitive Enterprise Data Analyzer To Eliminate Disclosure)
  ☆110Updated 8 months ago
• zemmali / DevSecOps-Toolchain
  DevSecOps Toolchain
  ☆111Updated 7 years ago
• mirswamp / deployment
  SWAMP-in-a-Box
  ☆62Updated 4 years ago
• zaproxy / zap-core-help
  The help files for the ZAP core
  ☆201Updated this week
• OWASP / user-security-stories
  Repo to hold mapping of user-security-stories
  ☆119Updated 6 years ago
• jtmelton / appsensor
  A toolkit for building self-defending applications through real-time event detection and response
  ☆284Updated 2 years ago
• fortify-ps / fortify-integration-sonarqube
  Fortify SonarQube Plugin
  ☆22Updated 4 years ago