Alternatives and similar repositories for HelloShiftLeft

Users that are interested in HelloShiftLeft are comparing it to the libraries listed below

• srcclr / efda
  Evaluation Framework for Dependency Analysis (EFDA)
  ☆43Updated 3 years ago
• eclipse-jbom / jbom
  ☆114Updated last month
• spoofzu / jvmxray
  Externalize Java application access to protected resources as log messages.
  ☆41Updated 3 weeks ago
• Contrast-Security-OSS / contrast-rO0
  A tiny Java agent that blocks attacks against unsafe deserialization
  ☆83Updated 7 years ago
• victims / maven-security-versions
  Identify vulnerable libraries in Maven dependencies
  ☆46Updated 2 years ago
• SAP / project-kb
  Home page of project "KB"
  ☆125Updated last month
• fabric8-analytics / cvedb
  CVE database
  ☆22Updated 4 years ago
• CycloneDX / cyclonedx-core-java
  CycloneDX SBOM Model and Utils for Creating and Validating BOMs
  ☆93Updated last week
• SatelliteApplicationsCatapult / tribble
  Coverage based JVM Fuzz testing tool.
  ☆19Updated 5 years ago
• openrewrite / rewrite-jenkins
  OpenRewrite recipes to continuously modernize Jenkins plugins.
  ☆11Updated last week
• OSSIndex / vulns
  Report missing advisories and corrections on OSS Index
  ☆17Updated 2 years ago
• blackducksoftware / blackduck-docker-inspector
  ☆21Updated 2 years ago
• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆142Updated last year
• microsoft / sarif-vscode-extension
  SARIF Microsoft Visual Studio Code extension
  ☆114Updated last month
• stevespringett / vulndb-data-mirror
  A simple Java command-line utility to mirror the entire contents of VulnDB.
  ☆44Updated 5 months ago
• OWASP / www-project-appsec-pipeline
  OWASP Foundation Web Respository
  ☆10Updated 2 years ago
• ossf / security-reviews
  A community collection of security reviews of open source software components.
  ☆93Updated last year
• diverse-project / maven-miner
  This projects mines maven central and creates a global dependency graph
  ☆32Updated 2 years ago
• chainguard-dev / bom-shelter
  A place to systematically store software bill of materials (SBOM) documents.
  ☆46Updated last year
• CROSSINGTUD / CryptoAnalysis
  CogniCrypt_SAST: CrySL-to-Static Analysis Compiler
  ☆72Updated this week
• find-sec-bugs / find-sec-bugs-demos
  Repository to showcase various configuration recipes with various technologies
  ☆35Updated 2 years ago
• CVEProject / automation-working-group
  CVE Automation Working Group
  ☆169Updated last week
• SAP / risk-explorer-for-software-supply-chains
  A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…
  ☆75Updated 2 weeks ago
• Contrast-Security-OSS / safelog4j
  Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning …
  ☆41Updated 11 months ago
• GDSSecurity / GDS-PMD-Security-Rules
  Custom security ruleset for the popular Java static analysis tool PMD.
  ☆61Updated 9 years ago
• jkutner / saferegex
  A tool for testing regular expressions for ReDoS vulnerabilities.
  ☆55Updated last year
• STAMP-project / pitest-descartes
  Descartes supports developers to improve their test suites by reporting weak spots in covered code
  ☆126Updated 2 months ago
• apache / maven-indexer
  Apache Maven Indexer
  ☆66Updated last month
• RIGS-IT / sonar-xanitizer
  Integrates Xanitizer results into SonarQube
  ☆21Updated 3 years ago
• Semmle / demos
  This repo has been migrated to https://github.com/github/security-lab/tree/master/CodeQL_Queries
  ☆25Updated 5 years ago