OWASP / www-project-csrfguard
The aim of this project is to protect Java applications against CSRF attacks with the use of Synchronizer Tokens
☆78Updated 2 weeks ago
Related projects: ⓘ
- POC in order to materialize CSRF prevention concepts described in the following OWASP CSRF cheatsheet☆30Updated 7 years ago
- An intentionally-vulnerable web application, ported from https://github.com/jzheaux/terracotta-bank-spring☆38Updated last year
- A Java library for calculating CVSSv2 and CVSSv3 scores and vectors☆36Updated this week
- OWASP Security Logging library for Java☆113Updated 9 months ago
- Test and monitor your projects for vulnerabilities with Maven. This plugin is officially maintained by Snyk.☆77Updated last month
- Maven plugin that integrates with a Dependency Track server to submit dependency manifests and optionally fail execution when vulnerable …☆61Updated 8 months ago
- An opinionated scaffolding framework that jumpstarts Java projects with an API-first design, secure defaults, and minimal dependencies☆61Updated this week
- OWASP CSRFGuard 3.1.0☆159Updated 2 years ago
- POC in order to protect an document upload application feature against "malicious" document submission.☆42Updated 3 years ago
- PoC: Spring Boot Keycloak Signed & Encrypted JWT Example☆16Updated 4 years ago
- Cloud security projects with Spring Cloud Config Server and Vault☆27Updated 2 weeks ago
- OWASP Foundation Web Respository☆12Updated last month
- A simple Java command-line utility to mirror the entire contents of VulnDB.☆42Updated 3 weeks ago
- Hands-On Workshop for OAuth 2.0 and OpenID Connect 1.0☆89Updated 8 months ago
- ☆34Updated 8 years ago
- The ultimate Java library for Troy Hunt's ';-- Have I Been Pwned (v3).☆13Updated last year
- Apache Axis1 Java☆10Updated 9 months ago
- Java/JVM implementation of the package url spec☆22Updated 3 months ago
- Java web and command line applications demonstrating various security topics☆235Updated 2 weeks ago
- 📝 A repository containing different java tutorials☆36Updated this week
- Apache WebServices - WSS4J☆33Updated this week
- Java libraries for working with available vulnerability data sources (GitHub Security Advisories, NVD, EPSS, CISA Known Exploited Vulnera…☆110Updated 3 weeks ago
- A rule for the Maven enforcer plugin to check for vulnerable artifacts within a project.☆40Updated 3 years ago
- Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning …☆41Updated 3 months ago
- A tiny Java agent that blocks attacks against unsafe deserialization☆82Updated 6 years ago
- ☆110Updated 3 months ago
- A developer-friendly, modular library for all core cryptographic operations written using Java.☆23Updated last year
- CycloneDX SBOM Model and Utils for Creating and Validating BOMs☆80Updated this week
- AppMap client agent for Java☆82Updated 2 weeks ago
- The project is a simple vulnerability Demo environment written by SpringBoot. Here, I deliberately wrote a vulnerability environment wher…☆84Updated 2 years ago