dependency-check / DependencyCheckLinks
OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.
☆7,094Updated this week
Alternatives and similar repositories for DependencyCheck
Users that are interested in DependencyCheck are comparing it to the libraries listed below
Sorting:
- Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supp…☆3,163Updated this week
- The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala proje…☆2,361Updated last month
- The ZAP by Checkmarx Core project☆13,905Updated this week
- CLI tool and library for generating a Software Bill of Materials from container images and filesystems☆7,412Updated this week
- Application Security Verification Standard☆3,124Updated this week
- DevSecOps, ASPM, Vulnerability Management. All on one platform.☆4,132Updated this week
- SpotBugs is FindBugs' successor. A tool for static analysis to look for bugs in Java code.☆3,711Updated this week
- ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.☆2,400Updated last month
- Vulnerability Static Analysis for Containers☆10,747Updated last week
- scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.☆3,901Updated last week
- Official OWASP Top 10 Document Repository☆4,707Updated 2 weeks ago
- A vulnerability scanner for container images and filesystems☆10,350Updated this week
- Open source vulnerability DB and triage service.☆1,937Updated this week
- A suite of tools to automate software compliance checks.☆1,788Updated this week
- Snyk CLI scans and monitors your projects for security vulnerabilities.☆5,179Updated this week
- nodejsscan is a static security code scanner for Node.js applications.☆2,486Updated last week
- OpenSSF Scorecard - Security health metrics for Open Source☆5,010Updated this week
- Open Source Vulnerability Management Platform☆5,851Updated this week
- This repository contains the scanner component for Greenbone Community Edition.☆3,977Updated this week
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆8,411Updated last year
- Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…☆847Updated last year
- Web Application Security Scanner Framework☆3,931Updated 2 months ago
- Automated Security Testing For REST API's☆2,599Updated last year
- Using a pre-commit hook, Talisman validates the outgoing changeset for things that look suspicious — such as tokens, passwords, and priva…☆2,018Updated 2 months ago
- Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more☆27,762Updated this week
- Vulnerability scanner written in Go which uses the data provided by https://osv.dev☆7,579Updated this week
- An enterprise friendly way of detecting and preventing secrets in code.☆4,186Updated 4 months ago
- An open source threat modeling tool from OWASP☆1,149Updated this week
- Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastruct…☆2,426Updated this week
- Cloud Security Posture Management (CSPM)☆3,566Updated 2 weeks ago