SonarQubeCommunity / sonar-fortifyLinks
Fortify SCA Plugin for SonarQube
☆14Updated 4 years ago
Alternatives and similar repositories for sonar-fortify
Users that are interested in sonar-fortify are comparing it to the libraries listed below
Sorting:
- Fortify SonarQube Plugin☆22Updated 4 years ago
- An example project that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions☆124Updated 7 years ago
- Automate security tests using Burp Suite.☆232Updated last year
- Java Deserialization☆27Updated 9 years ago
- A static analysis API for finding deserialization attack gadgets☆38Updated 2 years ago
- A technique for developing Fortify structural rules and characterization rules.☆14Updated 5 years ago
- Vulnerable Java based Web Application☆270Updated last year
- Static DOM XSS Scanner is a Static Analysis tool written in python that will iterate through all the JavaScript and HTML files under the …☆118Updated 10 years ago
- Repository to showcase various configuration recipes with various technologies☆36Updated 2 years ago
- All-in-one plugin for Burp Suite for the detection and the exploitation of Java deserialization vulnerabilities☆28Updated 3 years ago
- HTML5 WebSocket message fuzzer☆147Updated 6 years ago
- Repository to hold materials for DefCon_RESTing presentation by Dinis, Abe and Alvaro☆53Updated 12 years ago
- Evaluation Framework for Dependency Analysis (EFDA)☆44Updated 3 years ago
- Burp Suite extension for JAX-RS☆65Updated 8 years ago
- Code Pulse is a real-time code coverage tool for penetration testing activities☆122Updated 2 years ago
- Owasp Orizon is a source code static analyzer tool designed to spot security issues in Java applications.☆144Updated 8 years ago
- General Open Architecture Security Questionnaire☆32Updated 2 years ago
- Web Input Vector Extractor Teaser☆132Updated 3 years ago
- A tiny Java agent that blocks attacks against unsafe deserialization☆86Updated 8 years ago
- A static byte code analyzer for Java deserialization gadget research☆250Updated 8 years ago
- A tool for detecting XML External Entity (XXE) vulnerabilities in Java applications☆72Updated 11 years ago
- Read and write Fortify Project (FPR) files in Python☆40Updated 6 years ago
- Yet Another Source Code Analyzer☆184Updated 3 years ago
- Custom security ruleset for the popular Java static analysis tool PMD.☆61Updated 9 years ago
- siberas JMX exploitation toolkit☆130Updated 2 years ago
- Java taint propagation for java. Define tainted sources, sanitizer methods and sinks via aspects.☆29Updated 7 years ago
- Burp extension to perform Java Deserialization Attacks☆214Updated last year
- Java deserialization exploitation lab.☆235Updated 6 years ago
- Automatically exported from code.google.com/p/ra2-dom-xss-scanner☆29Updated 9 years ago
- Vendor-Neutral Security Tool Automation Controller (over REST)☆28Updated 6 years ago