Alternatives and similar repositories for sonarqube:

Users that are interested in sonarqube are comparing it to the libraries listed below

• jenkinsci / zap-plugin
  The OWASP ZAP Jenkins Plugin extends the functionality of the ZAP security tool into a CI Environment.
  ☆59Updated 6 months ago
• OtherDevOpsGene / zap-sonar-plugin
  Integrates OWASP Zed Attack Proxy reports into SonarQube
  ☆70Updated last year
• ing-bank / bdd-mobile-security-automation-framework
  Mobile Security testing Framework
  ☆41Updated 6 years ago
• codedx / codepulse
  Code Pulse is a real-time code coverage tool for penetration testing activities
  ☆122Updated 2 years ago
• stevespringett / threatmodel-sdk
  A Java library for parsing and programmatically using threat models
  ☆79Updated 2 years ago
• OWASP / OWASP-Testing-Guide
  OWASP Testing Guide
  ☆110Updated 9 years ago
• OWASP / Maturity-Models
  Node application to help managing Maturity Models like the ones created by BSIMM and OpenSAMM
  ☆193Updated 6 years ago
• thesp0nge / owasp-orizon
  Owasp Orizon is a source code static analyzer tool designed to spot security issues in Java applications.
  ☆144Updated 8 years ago
• OWASP / Cloud-Native-Application-Security-Top-10
  ☆20Updated 6 years ago
• denimgroup / threadfix
  ThreadFix is a software vulnerability management platform. This GitHub site is far out of date. Please go to www.threadfix.it for up-to-d…
  ☆339Updated 2 years ago
• OpenSecuritySummit / oss2019
  Open Security Summit 2019
  ☆26Updated 4 years ago
• matthiasrohr / OTMT
  Open Threat Modeling Template
  ☆50Updated 9 months ago
• Contrast-Security-OSS / contrast-rO0
  A tiny Java agent that blocks attacks against unsafe deserialization
  ☆83Updated 7 years ago
• OWASP / Container-Security-Verification-Standard
  Container Security Verification Standard
  ☆58Updated 5 years ago
• we45 / orchestron-community
  Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…
  ☆31Updated 2 years ago
• stevespringett / vulndb-data-mirror
  A simple Java command-line utility to mirror the entire contents of VulnDB.
  ☆44Updated 4 months ago
• jenkinsci / dependency-check-plugin
  Jenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).
  ☆134Updated last week
• augustd / owasp-security-logging
  OWASP Security Logging library for Java
  ☆117Updated last year
• appsecpipeline / AppSecPipeline-Specification
  AppSecPipeline Specification for DevOps automation.
  ☆40Updated 2 years ago
• HCL-TECH-SOFTWARE / ounce-maven-plugin
  Maven plugin for integrating with HCL AppScan Source
  ☆9Updated 2 weeks ago
• oshp / headers
  An application to catch, search and analyze HTTP secure headers.
  ☆65Updated 3 years ago
• find-sec-bugs / find-sec-bugs-demos
  Repository to showcase various configuration recipes with various technologies
  ☆35Updated 2 years ago
• RUB-NDS / BurpSSOExtension
  An extension for BurpSuite that highlights SSO messages in Burp's proxy window..
  ☆117Updated 3 years ago
• microsoft / threat-modeling-templates
  Microsoft Threat Modeling Template files
  ☆186Updated 2 years ago
• victims / maven-security-versions
  Identify vulnerable libraries in Maven dependencies
  ☆46Updated 2 years ago
• owasp-cloud-security / owasp-cloud-security
  OWASP Cloud Security - Enabling conversations through threat and control stories
  ☆180Updated 6 years ago
• stevespringett / nist-data-mirror
  A simple Java command-line utility to mirror the CVE JSON data from NIST.
  ☆208Updated 2 years ago
• NetsOSS / headless-burp
  Automate security tests using Burp Suite.
  ☆225Updated 10 months ago
• OWASP / user-security-stories
  Repo to hold mapping of user-security-stories
  ☆120Updated 6 years ago
• jenkinsci / contrast-continuous-application-security-plugin
  Jenkins Plugin from Contrast Security
  ☆13Updated 8 months ago