Alternatives and similar repositories for sonar-xanitizer

Users that are interested in sonar-xanitizer are comparing it to the libraries listed below

• jenkinsci / zap-plugin
  The OWASP ZAP Jenkins Plugin extends the functionality of the ZAP security tool into a CI Environment.
  ☆60Updated 10 months ago
• OWASP / sonarqube
  OWASP SonarQube Project
  ☆110Updated 6 years ago
• stevespringett / cvss-calculator
  A Java library for calculating CVSSv2 and CVSSv3 scores and vectors
  ☆47Updated 8 months ago
• OtherDevOpsGene / zap-sonar-plugin
  Integrates OWASP Zed Attack Proxy reports into SonarQube
  ☆72Updated last month
• OSSIndex / vulns
  Report missing advisories and corrections on OSS Index
  ☆17Updated 2 years ago
• GSA / security-benchmarks
  GSA Security Benchmarks and Tools
  ☆21Updated 5 years ago
• zapbot / zap-mgmt-scripts
  ZAP Management Scripts
  ☆23Updated last week
• OpenSecuritySummit / oss2019
  Open Security Summit 2019
  ☆26Updated 4 years ago
• jay-johnson / owasp-jenkins
  Want to test your applications using the latest OWASP security toolchains and the NIST National Vulnerability Database using Jenkins, Ans…
  ☆55Updated 6 years ago
• swagitda / security-decision-trees-graphviz
  Decision trees generated via Graphviz to inform pragmatic threat modelling.
  ☆11Updated 4 years ago
• kaakaww / vuln-graphql-api
  A very vulnerable implementation of a GraphQL API.
  ☆16Updated 3 weeks ago
• Contrast-Security-OSS / safelog4j
  Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning …
  ☆42Updated last year
• fabric8-analytics / cvedb
  CVE database
  ☆21Updated 4 years ago
• snyk-labs / java-goof
  ☆99Updated last week
• jenkinsci / dependency-check-plugin
  Jenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).
  ☆138Updated 3 weeks ago
• nccgroup / log4j-jndi-be-gone
  A Byte Buddy Java agent-based fix for CVE-2021-44228, the log4j 2.x "JNDI LDAP" vulnerability.
  ☆71Updated 3 years ago
• OWASP-Foundation / Project-Handbook
  This is a working copy of the OWASP Project Handbook and is the draft where changes are made before publishing a final version on the OWA…
  ☆17Updated 8 years ago
• ComplianceAsCode / oscal
  OSCAL SSP content for technologies shipped by Red Hat
  ☆15Updated 2 years ago
• matthiasrohr / OTMT
  Open Threat Modeling Template
  ☆52Updated last year
• appsecco / kubeseco
  Application Security Workflow Automation using Docker and Kubernetes
  ☆22Updated 2 years ago
• jenkinsci / zaproxy-plugin
  Not distributed anymore but allow the existing users of the plugin to use the latest version. Please migrate to:
  ☆11Updated 10 months ago
• vmify / vmify
  VMify - From Docker Image to the Cloud in Seconds
  ☆18Updated 3 years ago
• DevSlop / pixi-crs
  CI Pipeline with Pixi, the WAF OWASP Core Rule Set and TestCafe tests.
  ☆15Updated 4 years ago
• appsecco / DevOpsSecurityChecklist
  ☆14Updated 8 years ago
• sonatype-nexus-community / ahab
  ahab is a tool to check for vulnerabilities in your apt, apk, or yum powered operating systems, powered by Sonatype OSS Index.
  ☆68Updated last year
• EqualExperts / secure-delivery-playbook
  Equal Experts Secure Delivery Playbook
  ☆25Updated 2 years ago
• OWASP / Cloud-Native-Application-Security-Top-10
  ☆21Updated 6 years ago
• stevespringett / vulndb-data-mirror
  A simple Java command-line utility to mirror the entire contents of VulnDB.
  ☆46Updated last month
• appsecpipeline / AppSecPipeline-Specification
  AppSecPipeline Specification for DevOps automation.
  ☆40Updated 2 years ago
• iriusrisk / zap-webdriver
  Example security tests using Selenium WebDriver and OWASP ZAP
  ☆65Updated 8 years ago