OWASP / www-project-benchmarkLinks
OWASP Foundation Web Respository
☆18Updated 3 months ago
Alternatives and similar repositories for www-project-benchmark
Users that are interested in www-project-benchmark are comparing it to the libraries listed below
Sorting:
- OSS-Fuzz vulnerabilities for OSV.☆156Updated this week
- The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…☆144Updated last year
- Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.☆118Updated last year
- CodeQL workshops for GitHub Universe☆96Updated 2 years ago
- A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…☆75Updated last month
- CVSS2/3/4 library with interactive calculator for Python 2 and Python 3☆99Updated last week
- A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.☆57Updated this week
- Securibench Micro is a benchmark for static analysis tools for security.☆26Updated 6 years ago
- Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)☆58Updated last month
- SARIF Microsoft Visual Studio Code extension☆115Updated last month
- Externalize Java application access to protected resources as log messages.☆41Updated last month
- Trail of Bits Testing Handbook☆74Updated last week
- An open-source dataset of malicious software packages found in the wild, 100% vetted by humans.☆206Updated this week
- A comprehensive, systematic and actionable way to understand attacker behaviors and techniques with respect to the software supply chain☆94Updated 3 months ago
- An example repository that demonstrates how the build custom CodeQL bundles that include query customizations through the `Customizations…☆25Updated 2 years ago
- Home page of project "KB"☆126Updated 2 months ago
- Collection of community-driven CodeQL query, library and extension packs☆160Updated 2 weeks ago
- A fork of Bandit tool with patterns to identifying malicious python code.☆26Updated 2 years ago
- ☆194Updated 7 months ago
- Documentation of Semgrep: a fast, open-source, static analysis tool.☆41Updated this week
- Post Processor for Facebook Static Analysis Tools.☆141Updated this week
- Monthly CVE Stats☆42Updated last month
- A community collection of security reviews of open source software components.☆94Updated last year
- Python wrapper for the API of cve-search☆122Updated last year
- ☆34Updated 11 years ago
- Tools for conducting analysis of CVE data in Elasticsearch☆74Updated 2 weeks ago
- Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.1, purl, and vers…☆119Updated last week
- SecretBench is a dataset consisting of different secret types collected from public open-source repositories.☆32Updated 11 months ago
- NVD/CVE as JSON files☆118Updated this week
- Deprecated: Please visit https://github.com/github/codeql instead.☆81Updated 3 years ago