Alternatives and similar repositories for HelloShiftLeft:

Users that are interested in HelloShiftLeft are comparing it to the libraries listed below

• srcclr / efda
  Evaluation Framework for Dependency Analysis (EFDA)
  ☆43Updated 2 years ago
• Contrast-Security-OSS / safelog4j
  Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning …
  ☆41Updated 8 months ago
• eclipse-jbom / jbom
  ☆113Updated 8 months ago
• spoofzu / jvmxray
  Externalize Java application access to protected resources as log messages.
  ☆40Updated 9 months ago
• stevespringett / CPE-Parser
  A utility for validating and parsing Common Platform Enumeration (CPE) v2.2 and v2.3 as originally defined by MITRE and maintained by NIS…
  ☆48Updated last month
• CycloneDX / cyclonedx-core-java
  CycloneDX SBOM Model and Utils for Creating and Validating BOMs
  ☆86Updated this week
• SAP / project-kb
  Home page of project "KB"
  ☆117Updated 2 months ago
• microsoft / sarif-vscode-extension
  SARIF Microsoft Visual Studio Code extension
  ☆113Updated 4 months ago
• Fraunhofer-AISEC / codyze
  Codyze is a static analyzer for Java, C, C++ based on code property graphs
  ☆88Updated 3 weeks ago
• ShiftLeftSecurity / scan-action
  ☆53Updated 2 years ago
• find-sec-bugs / juliet-test-suite
  A collection of test cases in the Java language. It contains examples for 112 different CWEs.
  ☆53Updated 3 years ago
• stevespringett / vulndb-data-mirror
  A simple Java command-line utility to mirror the entire contents of VulnDB.
  ☆44Updated 2 months ago
• blackducksoftware / blackduck-docker-inspector
  ☆21Updated 2 years ago
• JLLeitschuh / bulk-security-pr-generator
  Generate thousands of pull requests to fix widespread security vulnerabilities across GitHub.
  ☆34Updated 2 weeks ago
• sigstore / sigstore-maven-plugin
  sigstore maven plugin
  ☆18Updated 6 months ago
• dschadow / ApplicationIntrusionDetection
  Application Intrusion Detection projects
  ☆19Updated 6 months ago
• stevespringett / cvss-calculator
  A Java library for calculating CVSSv2 and CVSSv3 scores and vectors
  ☆44Updated 2 months ago
• OWASP / www-project-appsec-pipeline
  OWASP Foundation Web Respository
  ☆10Updated last year
• ASSERT-KTH / pankti
  Generating tests from production workloads http://arxiv.org/pdf/2012.01198
  ☆18Updated 3 months ago
• secure-software-engineering / authcheck
  Analysis for access-control vulnerabilities in Java Spring Security applications.
  ☆14Updated 2 years ago
• mirswamp / deployment
  SWAMP-in-a-Box
  ☆61Updated 4 years ago
• STAMP-project / botsing
  Botsing is a Java framework for crash reproduction. It depends on EvoSuite (http://www.evosuite.org) for code instrumentation.
  ☆33Updated 2 years ago
• ShiftLeftSecurity / overflowdb
  ShiftLeft OverflowDB
  ☆118Updated 7 months ago
• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆141Updated 11 months ago
• Contrast-Security-OSS / sheepdog
  ☆17Updated 4 months ago
• OSSIndex / vulns
  Report missing advisories and corrections on OSS Index
  ☆17Updated 2 years ago
• diverse-project / maven-miner
  This projects mines maven central and creates a global dependency graph
  ☆32Updated 2 years ago
• CVEProject / automation-working-group
  CVE Automation Working Group
  ☆165Updated this week
• Contrast-Security-OSS / docs
  ☆15Updated 4 years ago
• SAP / risk-explorer-for-software-supply-chains
  A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…
  ☆75Updated last month