OWASP / www-project-dependency-check

Related projects ⓘ

Alternatives and complementary repositories for www-project-dependency-check

• NotSoSecure / cloud-sec-wiki
  Jekyll Files for cloudsecwiki.com
  ☆49Updated 3 years ago
• PortSwigger / nginx-alias-traversal
  Burp extension to detect alias traversal via NGINX misconfiguration at scale.
  ☆51Updated 2 years ago
• PortSwigger / error-message-checks
  Burp Suite extension to passively scan for applications revealing server error messages
  ☆11Updated last year
• cxai / Checkmarx-PowerTools
  A collection of various scripts and automations to simplify Checkmarx SAST and IAST setup and use
  ☆14Updated 6 years ago
• jackj07 / Response-Pattern-Matcher
  Adds extensibility to Burp by using a list of payloads to pattern match on HTTP responses highlighting interesting and potentially vulner…
  ☆15Updated last year
• advanced-security / custom-codeql-bundle
  An example repository that demonstrates how the build custom CodeQL bundles that include query customizations through the `Customizations…
  ☆25Updated 2 years ago
• GitHubSecurityLab / CodeQL-Community-Packs
  Collection of community-driven CodeQL query, library and extension packs
  ☆75Updated this week
• PortSwigger / java-deserialization-scanner
  All-in-one plugin for Burp Suite for the detection and the exploitation of Java deserialization vulnerabilities
  ☆26Updated 2 years ago
• brompwnie / cve-2020-5260
  A HTTP PoC Endpoint for cve-2020-5260 which can be deployed to Heroku
  ☆37Updated 4 years ago
• Contrast-Security-OSS / vulnerable-spring-boot-application
  ☆13Updated 7 months ago
• advanced-security / codeql-bundle-action
  Action to retrofit a CodeQL bundle with additional queries, libraries, and customizations
  ☆21Updated 6 months ago
• Contrast-Security-OSS / go-test-bench
  Intentionally vulnerable Go web app.
  ☆42Updated 11 months ago
• apiiro / combobulator
  Dependency Combobulator
  ☆89Updated 10 months ago
• JLLeitschuh / lgtm_hack_scripts
  Collection of python helper API's for interacting with LGTM.com in ways the official API doesn't support.
  ☆23Updated 2 years ago
• GitHubSecurityLab / gh-mrva
  Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)
  ☆49Updated 7 months ago
• Morningstar / GoASQ
  General Open Architecture Security Questionnaire
  ☆31Updated last year
• securingdev / custom-codeql-queries
  Custom / Experimental CodeQL queries
  ☆37Updated 2 years ago
• Bearer / bearer-rules
  Rules for Bearer SAST
  ☆24Updated last week
• jschauma / check-springshell
  try to determine if a host is vulnerable to SpringShell CVE‐2022‐22965 and CVE‐2022‐22963
  ☆23Updated 2 years ago
• akto-api-security / tests-library
  Community generated list of API security tests to find OWASP top10, HackerOne top 10 vulnerabilities
  ☆33Updated this week
• wuntee / BurpAuthzPlugin
  ☆76Updated 11 years ago
• spaceraccoon / spring-boot-actuator-h2-rce
  Sample Spring Boot App Demonstrating RCE via Exposed env Actuator and H2 Database
  ☆104Updated 4 years ago
• ShiftLeftSecurity / shiftleft-scan-vscode
  ShiftLeft Scan is a free and open-source commercial-grade security tool for modern DevOps teams.
  ☆12Updated last year
• Metnew / write-ups
  ☆33Updated 2 years ago
• PortSwigger / burp-extender-api
  Burp Wiener API (Legacy)
  ☆57Updated 11 months ago
• appsecco / json-flash-csrf-poc
  This repo contains the files required to perform a CSRF attack using Flash and HTTP 307 redirections.
  ☆75Updated 6 years ago
• PortSwigger / openapi-parser
  Parse OpenAPI specifications, previously known as Swagger specifications, into the BurpSuite for automating RESTful API testing – approve…
  ☆42Updated 9 months ago
• vmnguyen / semgrep-rules
  My custom semgrep rules
  ☆18Updated 4 years ago
• PortSwigger / taborator
  A Burp extension to show the Collaborator client in a tab
  ☆36Updated last year
• orangetw / JNDI-Injection-Bypass
  Some payloads of JNDI Injection in JDK 1.8.0_191+
  ☆9Updated 4 years ago