OWASP / www-project-csrfguard
The aim of this project is to protect Java applications against CSRF attacks with the use of Synchronizer Tokens
☆85Updated 2 weeks ago
Alternatives and similar repositories for www-project-csrfguard:
Users that are interested in www-project-csrfguard are comparing it to the libraries listed below
- POC in order to materialize CSRF prevention concepts described in the following OWASP CSRF cheatsheet☆30Updated 7 years ago
- An intentionally-vulnerable web application, ported from https://github.com/jzheaux/terracotta-bank-spring☆38Updated 2 years ago
- Cloud security projects with Spring Cloud Config Server and Vault☆28Updated this week
- OWASP CSRFGuard 3.1.0☆161Updated 2 years ago
- OWASP Security Logging library for Java☆116Updated last year
- a library for performing fast, configurable cleansing of HTML coming from untrusted sources☆196Updated this week
- A Java library for calculating CVSSv2 and CVSSv3 scores and vectors☆44Updated 3 months ago
- Maven plugin that integrates with a Dependency Track server to submit dependency manifests and optionally fail execution when vulnerable …☆68Updated 2 months ago
- Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning …☆41Updated 9 months ago
- Hands-On Workshop for OAuth 2.0 and OpenID Connect 1.0☆90Updated last year
- POC about usage of JSON Web Tokens (JWT) in a secure way.☆30Updated 6 years ago
- JBoss JavaEE Specs APIs☆33Updated 5 years ago
- A simple Java command-line utility to mirror the entire contents of VulnDB.☆44Updated 3 months ago
- ☆111Updated 3 weeks ago
- A Cloud Native Buildpack that provides the Bellsoft Liberica implementations of JREs and JDKs☆76Updated this week
- ☆114Updated 9 months ago
- CycloneDX SBOM Model and Utils for Creating and Validating BOMs☆92Updated this week
- A rule for the Maven enforcer plugin to check for vulnerable artifacts within a project.☆40Updated 4 years ago
- The OWASP Java Encoder is a Java 1.5+ simple-to-use drop-in high-performance encoder class with no dependencies and little baggage. This …☆512Updated 2 weeks ago
- A cli that can be used to query various online vulnerability sources such as the NVD or GHSA. The CLI and docker images can be used to mi…☆141Updated this week
- A roving tour of some of the various options for Spring Security authentication☆20Updated 6 years ago
- 📝 A repository containing different java tutorials☆37Updated last month
- Apache OpenWebBeans meecrowave☆56Updated 3 months ago
- A secure spring boot based java service providing an API to store and retrieve browser bookmarks☆18Updated 9 months ago
- Narayana Spring Boot autoconfiguration and starter☆50Updated 3 weeks ago
- PoC: Spring Boot Keycloak Signed & Encrypted JWT Example☆16Updated 5 years ago
- Compares Frameworks in April 2020☆47Updated last year
- A tiny Java agent that blocks attacks against unsafe deserialization☆83Updated 7 years ago
- An opinionated scaffolding framework that jumpstarts Java projects with an API-first design, secure defaults, and minimal dependencies☆63Updated this week
- AppMap client agent for Java☆84Updated this week