OtherDevOpsGene / zap-sonar-pluginLinks
Integrates OWASP Zed Attack Proxy reports into SonarQube
☆70Updated 2 weeks ago
Alternatives and similar repositories for zap-sonar-plugin
Users that are interested in zap-sonar-plugin are comparing it to the libraries listed below
Sorting:
- OWASP SonarQube Project☆110Updated 5 years ago
- Jenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).☆136Updated this week
- The OWASP ZAP Jenkins Plugin extends the functionality of the ZAP security tool into a CI Environment.☆60Updated 10 months ago
- A simple Java command-line utility to mirror the CVE JSON data from NIST.☆207Updated 2 years ago
- Container Security Verification Standard☆58Updated 5 years ago
- Demo - how to easily build security testing for Web App, using Zap and Glue☆60Updated 4 years ago
- Fortify SonarQube Plugin☆22Updated 4 years ago
- Fully open-source SAST scanner supporting a range of languages and frameworks. Integrates with major CI pipelines and IDE such as Azure D…☆149Updated 4 years ago
- Integrates Dependency-Check reports into SonarQube☆655Updated last week
- DevSecOps Toolchain☆113Updated 7 years ago
- Checkmarx Scan and Result Orchestration☆99Updated 3 weeks ago
- Simple command-line client to the Anchore Engine service☆114Updated last year
- Integrates Xanitizer results into SonarQube☆21Updated 4 years ago
- The DevSecOps toolset for REST APIs☆273Updated 2 years ago
- Zap baseline scanner in Docker with authentication☆103Updated last year
- Ready to use images of Zap and Glue, especially for CI integration.☆35Updated 6 years ago
- A simple tool for interacting with OWASP ZAP from the commandline.☆241Updated 2 years ago
- Code Pulse is a real-time code coverage tool for penetration testing activities☆122Updated 2 years ago
- This plugin adds an ability to perform automatic code scan by Checkmarx server and shows results summary and trend in Jenkins interface.☆43Updated 2 weeks ago
- A simple Java command-line utility to mirror the entire contents of VulnDB.☆45Updated 3 weeks ago
- dockscan is security vulnerability and audit scanner for Docker installations☆219Updated 8 years ago
- Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning …☆41Updated last year
- Mixeway is security orchestrator for vulnerability scanners which enable easy plug in integration with CICD pipelines. MixewayHub project…☆110Updated last year
- AppSecPipeline Specification for DevOps automation.☆40Updated 2 years ago
- Owasp Zap chart for Kubernetes☆49Updated 3 years ago
- BDD Automated Security Tests for Web Applications☆567Updated 2 years ago
- A Java library for calculating CVSSv2 and CVSSv3 scores and vectors☆46Updated 7 months ago
- Want to test your applications using the latest OWASP security toolchains and the NIST National Vulnerability Database using Jenkins, Ans…☆55Updated 6 years ago
- Mobile Security testing Framework☆41Updated 6 years ago
- Node application to help managing Maturity Models like the ones created by BSIMM and OpenSAMM☆195Updated 6 years ago