Alternatives and similar repositories for sonar-xanitizer

Users that are interested in sonar-xanitizer are comparing it to the libraries listed below

• jenkinsci / zap-plugin
  The OWASP ZAP Jenkins Plugin extends the functionality of the ZAP security tool into a CI Environment.
  ☆58Updated last year
• OtherDevOpsGene / zap-sonar-plugin
  Integrates OWASP Zed Attack Proxy reports into SonarQube
  ☆73Updated 6 months ago
• stevespringett / cvss-calculator
  A Java library for calculating CVSSv2, CVSSv3, and CVSSv4 scores and vectors
  ☆51Updated last week
• OWASP / sonarqube
  OWASP SonarQube Project
  ☆112Updated 6 years ago
• OSSIndex / vulns
  Report missing advisories and corrections on OSS Index
  ☆17Updated 3 years ago
• HCL-TECH-SOFTWARE / ounce-maven-plugin
  Maven plugin for integrating with HCL AppScan Source
  ☆10Updated 4 months ago
• zapbot / zap-mgmt-scripts
  ZAP Management Scripts
  ☆23Updated 3 weeks ago
• OpenSecuritySummit / oss2019
  Open Security Summit 2019
  ☆26Updated 5 years ago
• GSA / security-benchmarks
  GSA Security Benchmarks and Tools
  ☆21Updated 6 years ago
• fabric8-analytics / cvedb
  CVE database
  ☆21Updated 5 years ago
• zaproxy / zap-swag
  Artwork for all official ZAP swag - posters, stickers, t-shirts etc
  ☆14Updated last year
• Contrast-Security-OSS / safelog4j
  Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning …
  ☆43Updated 3 months ago
• jay-johnson / owasp-jenkins
  Want to test your applications using the latest OWASP security toolchains and the NIST National Vulnerability Database using Jenkins, Ans…
  ☆56Updated 7 years ago
• OWASP-Foundation / Project-Handbook
  This is a working copy of the OWASP Project Handbook and is the draft where changes are made before publishing a final version on the OWA…
  ☆18Updated 8 years ago
• appsecco / DevOpsSecurityChecklist
  ☆14Updated 8 years ago
• appsecpipeline / AppSecPipeline-Specification
  AppSecPipeline Specification for DevOps automation.
  ☆40Updated 3 years ago
• nccgroup / log4j-jndi-be-gone
  A Byte Buddy Java agent-based fix for CVE-2021-44228, the log4j 2.x "JNDI LDAP" vulnerability.
  ☆71Updated 4 years ago
• eBay / DASTProxy
  ☆59Updated last year
• kaakaww / vuln-graphql-api
  A very vulnerable implementation of a GraphQL API.
  ☆17Updated this week
• mike-goodwin / owasp-threat-dragon-core
  OWASP Threat Dragon core files
  ☆11Updated last year
• jqassistant-tooling / sonar-jqassistant-plugin
  The SonarQube plugin for jQAssistant
  ☆12Updated last week
• matthiasrohr / OTMT
  Open Threat Modeling Template
  ☆52Updated last year
• devsecops / firebolt
  A platform to create, catalog and deploy tests for tools such as Gauntlt, AttackIQ and Metasploit.
  ☆17Updated 9 years ago
• ministryofjustice / container-check-sonar-plugin
  A SonarQube plugin which which display results of Trivy-generated container security scans
  ☆14Updated 4 years ago
• andifalk / secure-development-on-kubernetes
  Slides and Demos for "Secure Development on Kubernetes" talk
  ☆22Updated last year
• appsecco / alldaydevops-aism
  All Day DevOps - Automated Infrastructure Security Monitoring and Defence (ELK + AWS Lambda)
  ☆25Updated 9 years ago
• swagitda / security-decision-trees-graphviz
  Decision trees generated via Graphviz to inform pragmatic threat modelling.
  ☆11Updated 5 years ago
• victims / maven-security-versions
  Identify vulnerable libraries in Maven dependencies
  ☆46Updated 3 years ago
• hazardsec / cx-scan
  Automate Checkmarx Scanning and Onboarding Plus AWS Access
  ☆12Updated 3 years ago
• codedx / codepulse
  Code Pulse is a real-time code coverage tool for penetration testing activities
  ☆122Updated 3 years ago