A framework for understanding the capabilities of automated detection methods at identifying classes of application security vulnerabilities
☆33Mar 20, 2026Updated this week
Alternatives and similar repositories for AppSec-Detection-Framework
Users that are interested in AppSec-Detection-Framework are comparing it to the libraries listed below
Sorting:
- software asset scanning orchestration system☆34Updated this week
- A very vulnerable implementation of a GraphQL API.☆17Mar 13, 2026Updated last week
- App Startup 🚀 + Hilt 🗡 (a sample project that combines both to provide dependencies to Initializers)☆18Jan 16, 2025Updated last year
- Mixeway Scanner is Spring Boot application which aggregate integration with number of OpenSource Vulnerability scanners - both SAST and D…☆24Oct 7, 2021Updated 4 years ago
- This is a working copy of the OWASP Project Handbook and is the draft where changes are made before publishing a final version on the OWA…☆19Feb 22, 2017Updated 9 years ago
- code reviews to practice☆18Jul 22, 2021Updated 4 years ago
- Scans npmjs.org for npm packages that can be taken over☆19Jun 6, 2022Updated 3 years ago
- A project to visualize the software supply chain☆58Sep 9, 2023Updated 2 years ago
- Securing DevOps' logging pipeline, a dev environment for Mozilla Hindsight☆22Jul 6, 2018Updated 7 years ago
- A transformer that decodes swipes across a smartphone keyboard into words (gesture / swipe / glide typing) (enhanced yandex cup solution)☆15Feb 20, 2026Updated last month
- Automate vulnerability triage which prioritizes remediation over discovery☆20Updated this week
- ☆25Jun 13, 2022Updated 3 years ago
- ## Auto-archived due to inactivity. ## Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Securit…☆37Oct 17, 2024Updated last year
- verinice.veo is a cloud-native application for managing information security and data protection☆22Updated this week
- Spring-Boot app for demonstrating security vulnaribilities☆13Aug 21, 2019Updated 6 years ago
- Presentations☆10Oct 2, 2017Updated 8 years ago
- Use AI to Scan Your Code from the Command Line for security and code smells. Bring your own keys. Supports OpenAI and Gemini☆176Apr 23, 2025Updated 11 months ago
- ☆10Aug 28, 2020Updated 5 years ago
- Maturity Model Collaborative project☆15Feb 27, 2023Updated 3 years ago
- A client for Hashicorp Vault written in TypeScript☆14Nov 20, 2023Updated 2 years ago
- My talks...☆25Feb 27, 2025Updated last year
- A collection of awesome web crawler,spider in different languages☆12Oct 6, 2017Updated 8 years ago
- OWASP Foundation Web Respository☆11Jan 14, 2026Updated 2 months ago
- SCP management tool☆135Oct 23, 2023Updated 2 years ago
- This is a native binding of eSpeak for node. eSpeak is a compact open source software speech synthesizer for English and other languages.☆13Oct 19, 2016Updated 9 years ago
- CVE-2021-40438 exploit PoC with Docker setup.☆12Oct 24, 2021Updated 4 years ago
- A Mozilla Firefox extension which allows quick access to your google-dorking result☆19Jun 18, 2020Updated 5 years ago
- Python implementation of Stakeholder-Specific Vulnerability Categorization (SSVC)☆23Jan 21, 2026Updated 2 months ago
- An ASCII presentation tool in PHP��☆21Aug 13, 2012Updated 13 years ago
- Code for the Presentation "Bot-in-the-middle" at Le Hack 2023!☆16Oct 9, 2023Updated 2 years ago
- Cheat Sheets☆12Feb 25, 2019Updated 7 years ago
- ☆10Feb 27, 2019Updated 7 years ago
- Terraform module which provides easy to configure AWS environment for running automated security scanning solutions at scheduled interval…☆46Jan 29, 2019Updated 7 years ago
- List of .tr domains, contains 200k live domains.☆16Mar 2, 2023Updated 3 years ago
- A salesforce library designed to provide idiomatic clojure representations of salesforce data and metadata☆11Jan 14, 2020Updated 6 years ago
- Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact pro…☆519Updated this week
- Runtime detection and response for malicious events in Kubernetes workloads☆46Mar 14, 2024Updated 2 years ago
- Common Corpus is used to build coverage-minimized corpus data sets for fuzzing.☆29Aug 16, 2023Updated 2 years ago
- A Burp Suite extension which augments your proxy traffic by injecting log4shell payloads into headers☆42Dec 13, 2021Updated 4 years ago