SonarQubeCommunity / sonar-fortifyLinks
Fortify SCA Plugin for SonarQube
☆14Updated 4 years ago
Alternatives and similar repositories for sonar-fortify
Users that are interested in sonar-fortify are comparing it to the libraries listed below
Sorting:
- Trigger automated Acunetix scans as part of your web application's build process☆32Updated last year
- Java Deserialization☆26Updated 8 years ago
- Yet Another Source Code Analyzer☆184Updated 3 years ago
- Custom Fortify SCA rules to detect common JSSE certification validation flaws☆11Updated 9 years ago
- MOSEC-X-PLUGIN 后端API服务☆24Updated 5 years ago
- Automate security tests using Burp Suite.☆229Updated last year
- A technique for developing Fortify structural rules and characterization rules.☆14Updated 5 years ago
- Java deserialization exploitation lab.☆235Updated 6 years ago
- An example project that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions☆124Updated 7 years ago
- General Open Architecture Security Questionnaire☆32Updated 2 years ago
- Java taint propagation for java. Define tainted sources, sanitizer methods and sinks via aspects.☆28Updated 6 years ago
- Proof of concept exploit, showing how to do bytecode injection through untrusted deserialization with Spring Framework 4.2.4☆116Updated 6 years ago
- Develop Burp extensions in Jython☆179Updated 8 years ago
- ☆75Updated 8 years ago
- AndroidManifest.xml security auditor☆71Updated 13 years ago
- Static DOM XSS Scanner is a Static Analysis tool written in python that will iterate through all the JavaScript and HTML files under the …☆118Updated 10 years ago
- A static analysis API for finding deserialization attack gadgets☆38Updated 2 years ago
- YSOSERIAL Integration with burp suite☆166Updated 2 years ago
- POC for XStream RCE☆13Updated 11 years ago
- All-in-one plugin for Burp Suite for the detection and the exploitation of Java deserialization vulnerabilities☆28Updated 3 years ago
- Automated SonarQube☆70Updated 6 years ago
- Repository to showcase various configuration recipes with various technologies☆36Updated 2 years ago
- Repository to hold materials for DefCon_RESTing presentation by Dinis, Abe and Alvaro☆53Updated 12 years ago
- Web Input Vector Extractor Teaser☆132Updated 3 years ago
- python restful api fuzz test☆51Updated last year
- Java-Web-Security - Sichere Webanwendungen mit Java entwickeln☆221Updated this week
- Owasp Orizon is a source code static analyzer tool designed to spot security issues in Java applications.☆144Updated 8 years ago
- Baseline IoT security checklist. Consider security as early in development as possible and reap the rewards.☆30Updated 8 years ago
- Security Development LifeCycle Process (安全开发生命周期参考)☆27Updated 6 years ago
- Vulnerable Java based Web Application☆270Updated last year