dependency-check / DependencyCheckLinks
OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.
☆7,018Updated this week
Alternatives and similar repositories for DependencyCheck
Users that are interested in DependencyCheck are comparing it to the libraries listed below
Sorting:
- Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supp…☆3,117Updated this week
- The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala proje…☆2,354Updated 2 weeks ago
- Vulnerability Static Analysis for Containers☆10,674Updated last week
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆8,302Updated last year
- A vulnerability scanner for container images and filesystems☆10,043Updated last week
- OWASP Benchmark is a test suite designed to verify the speed and accuracy of software vulnerability detection tools. A fully runnable web…☆719Updated this week
- ☆3,546Updated 5 months ago
- CLI tool and library for generating a Software Bill of Materials from container images and filesystems☆7,240Updated this week
- Open source vulnerability DB and triage service.☆1,908Updated this week
- Testing TLS/SSL encryption anywhere on any port☆8,455Updated this week
- Hunt for security weaknesses in Kubernetes clusters☆4,884Updated last year
- Using a pre-commit hook, Talisman validates the outgoing changeset for things that look suspicious — such as tokens, passwords, and priva…☆2,011Updated 3 weeks ago
- The ZAP by Checkmarx Core project☆13,768Updated this week
- Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark☆7,558Updated this week
- This repository contains the scanner component for Greenbone Community Edition.☆3,914Updated this week
- A service that analyzes docker images and scans for vulnerabilities☆1,587Updated 2 years ago
- Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more☆27,276Updated this week
- The cheat sheet about Java Deserialization vulnerabilities☆3,108Updated 2 years ago
- scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.☆3,874Updated this week
- SpotBugs is FindBugs' successor. A tool for static analysis to look for bugs in Java code.☆3,686Updated this week
- Cloud Native Runtime Security☆8,019Updated this week
- Web Application Security Scanner Framework☆3,918Updated last month
- A toolkit for testing, tweaking and cracking JSON Web Tokens☆5,934Updated 2 months ago
- Vulnerability scanner written in Go which uses the data provided by https://osv.dev☆7,498Updated this week
- The Docker Bench for Security is a script that checks for dozens of common best-practices around deploying Docker containers in productio…☆9,411Updated 8 months ago
- ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.☆2,388Updated 2 weeks ago
- Open Source Vulnerability Management Platform☆5,500Updated 3 weeks ago
- Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.☆11,947Updated this week
- Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabl…☆23,777Updated this week
- Tfsec is now part of Trivy☆6,841Updated 3 weeks ago