ZupIT / horusecLinks
Horusec is an open source tool that improves identification of vulnerabilities in your project with just one command.
☆1,254Updated last week
Alternatives and similar repositories for horusec
Users that are interested in horusec are comparing it to the libraries listed below
Sorting:
- Performing security tests inside your CI☆582Updated last year
- Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilit…☆546Updated 3 years ago
- Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…☆851Updated 2 years ago
- A laboratory for learning secure web and mobile development in a practical manner.☆953Updated 11 months ago
- RegVuln is a tool that use Engine Trivy to generate reports about images Docker from Registry, have integration with Defect Dojo to Vulne…☆16Updated last year
- Vulnerable REST API with OWASP top 10 vulnerabilities for security testing☆1,014Updated 9 months ago
- Security Champions Playbook v 2.1☆378Updated last year
- OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for …☆1,158Updated 3 weeks ago
- ☆417Updated 2 years ago
- Semgrep Community Edition rules, maintained by Semgrep and the community. Free to use under the Semgrep Rules License.☆969Updated last week
- OWASP VulnerableApp Project: For Security Enthusiasts by Security Enthusiasts.☆337Updated last month
- Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastruct…☆2,458Updated this week
- The OWASP DevSecOps Guideline can help us to embedding security as a part of the development pipeline.☆956Updated 6 months ago
- It's a Horusec Action proof of concept☆14Updated last year
- Imperva's customizable API attack tool takes an API specification as an input, generates and runs attacks that are based on it as an outp…☆484Updated 2 years ago
- secureCodeBox (SCB) - continuous secure delivery out of the box☆906Updated this week
- Checklist for container security - devsecops practices☆1,589Updated last year
- Conviso Vulnerable Web Application is the OSS project from the Conviso Application Security for the community. The project represents a v…☆61Updated last month
- It contains the pipelines for each application inside this development group. It brings the complete SSDLC, with SAST, SCA, SSCA, and Tes…☆20Updated this week
- vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.☆1,288Updated 7 months ago
- An open source threat modeling tool from OWASP☆1,176Updated last week
- njsscan is a semantic aware SAST tool that can find insecure code patterns in your Node.js applications.☆410Updated 9 months ago
- Creates CycloneDX Bill of Materials (BOM) for your projects from source and container images. Supports many languages and package manager…☆767Updated last week
- An API security tool to capture and analyze API traffic, test API endpoints, reconstruct Open API specification, and identify API securit…☆545Updated 10 months ago
- Open source vulnerability DB and triage service.☆1,966Updated last week
- Automating situational awareness for cloud penetration tests.☆2,176Updated last week
- Scans Software Bill of Materials (SBOMs) for security vulnerabilities☆578Updated 5 months ago
- completely ridiculous API (crAPI)☆1,313Updated last week
- CI/CD Security Analyzer☆669Updated 6 months ago
- Vulnerable app with examples showing how to not use secrets☆1,347Updated this week