Alternatives and similar repositories for sonar-xanitizer

Users that are interested in sonar-xanitizer are comparing it to the libraries listed below

• jenkinsci / zap-plugin
  The OWASP ZAP Jenkins Plugin extends the functionality of the ZAP security tool into a CI Environment.
  ☆59Updated last year
• stevespringett / cvss-calculator
  A Java library for calculating CVSSv2, CVSSv3, and CVSSv4 scores and vectors
  ☆50Updated 2 weeks ago
• OWASP / sonarqube
  OWASP SonarQube Project
  ☆111Updated 6 years ago
• HCL-TECH-SOFTWARE / ounce-maven-plugin
  Maven plugin for integrating with HCL AppScan Source
  ☆10Updated 3 months ago
• OtherDevOpsGene / zap-sonar-plugin
  Integrates OWASP Zed Attack Proxy reports into SonarQube
  ☆73Updated 5 months ago
• OSSIndex / vulns
  Report missing advisories and corrections on OSS Index
  ☆17Updated 2 years ago
• GSA / security-benchmarks
  GSA Security Benchmarks and Tools
  ☆21Updated 6 years ago
• OpenSecuritySummit / oss2019
  Open Security Summit 2019
  ☆26Updated 5 years ago
• zapbot / zap-mgmt-scripts
  ZAP Management Scripts
  ☆23Updated 3 weeks ago
• Contrast-Security-OSS / safelog4j
  Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning …
  ☆43Updated 2 months ago
• codedx / codepulse
  Code Pulse is a real-time code coverage tool for penetration testing activities
  ☆122Updated 3 years ago
• appsecpipeline / AppSecPipeline-Specification
  AppSecPipeline Specification for DevOps automation.
  ☆40Updated 3 years ago
• nccgroup / log4j-jndi-be-gone
  A Byte Buddy Java agent-based fix for CVE-2021-44228, the log4j 2.x "JNDI LDAP" vulnerability.
  ☆71Updated 3 years ago
• swagitda / security-decision-trees-graphviz
  Decision trees generated via Graphviz to inform pragmatic threat modelling.
  ☆11Updated 4 years ago
• jenkinsci / dependency-check-plugin
  Jenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).
  ☆137Updated last month
• jay-johnson / owasp-jenkins
  Want to test your applications using the latest OWASP security toolchains and the NIST National Vulnerability Database using Jenkins, Ans…
  ☆55Updated 7 years ago
• OWASP-Foundation / Project-Handbook
  This is a working copy of the OWASP Project Handbook and is the draft where changes are made before publishing a final version on the OWA…
  ☆17Updated 8 years ago
• devsecops / wardley-maps
  A repository for wardley maps related to security topics.
  ☆46Updated 8 years ago
• matthiasrohr / OTMT
  Open Threat Modeling Template
  ☆52Updated last year
• appsecco / DevOpsSecurityChecklist
  ☆14Updated 8 years ago
• zaproxy / zap-swag
  Artwork for all official ZAP swag - posters, stickers, t-shirts etc
  ☆14Updated last year
• devsecops / firebolt
  A platform to create, catalog and deploy tests for tools such as Gauntlt, AttackIQ and Metasploit.
  ☆17Updated 9 years ago
• zaproxy / zap-admin
  ZAP Admin
  ☆29Updated this week
• stevespringett / vulndb-data-mirror
  A simple Java command-line utility to mirror the entire contents of VulnDB.
  ☆48Updated 5 months ago
• stevespringett / nist-data-mirror
  A simple Java command-line utility to mirror the CVE JSON data from NIST.
  ☆212Updated 3 years ago
• OWASP / Cloud-Native-Application-Security-Top-10
  ☆21Updated 7 years ago
• fabric8-analytics / cvedb
  CVE database
  ☆21Updated 5 years ago
• OWASP / SEDATED
  SEDATED® Project (Sensitive Enterprise Data Analyzer To Eliminate Disclosure)
  ☆109Updated 10 months ago
• DevSlop / pixi-crs
  CI Pipeline with Pixi, the WAF OWASP Core Rule Set and TestCafe tests.
  ☆15Updated 4 years ago
• find-sec-bugs / find-sec-bugs-demos
  Repository to showcase various configuration recipes with various technologies
  ☆37Updated 3 years ago