Alternatives and similar repositories for python-fortify

Users that are interested in python-fortify are comparing it to the libraries listed below

• irsl / jackson-rce-via-spel
  An example project that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions
  ☆123Updated 7 years ago
• Contrast-Security-OSS / joogle
  A static analysis API for finding deserialization attack gadgets
  ☆38Updated 2 years ago
• we1h0 / Security-Development-Lifecycle-Reference
  Security Development LifeCycle Process (安全开发生命周期参考)
  ☆27Updated 6 years ago
• cxai / Checkmarx-PowerTools
  A collection of various scripts and automations to simplify Checkmarx SAST and IAST setup and use
  ☆14Updated 6 years ago
• JavanXD / Demo-Exploit-Jackson-RCE
  Exploiting CVE-2017-7525 demo project with Angular7 frontend and Spring.
  ☆18Updated 6 years ago
• ryohare / fortify-structural-rules-guide
  A technique for developing Fortify structural rules and characterization rules.
  ☆14Updated 5 years ago
• cdaller / security_taint_propagation
  Java taint propagation for java. Define tainted sources, sanitizer methods and sinks via aspects.
  ☆28Updated 6 years ago
• angelwhu / jvm-rasp
  基于JVM-Sandbox实现RASP安全监控防护
  ☆52Updated last year
• advanced-security / custom-codeql-bundle
  An example repository that demonstrates how the build custom CodeQL bundles that include query customizations through the `Customizations…
  ☆25Updated 2 years ago
• pwntester / XStreamPOC
  POC for XStream RCE
  ☆13Updated 11 years ago
• GrrrDog / ZeroNights-HackQuest-2016
  2 web tasks from ZeroNights HackQuest 2016
  ☆50Updated 8 years ago
• securingdev / custom-codeql-queries
  Custom / Experimental CodeQL queries
  ☆37Updated 3 years ago
• smasterfree / api-fuzz
  python restful api fuzz test
  ☆51Updated last year
• Bypass007 / vuln
  Record some Vulnerabilities
  ☆44Updated 2 years ago
• appsecco / json-flash-csrf-poc
  This repo contains the files required to perform a CSRF attack using Flash and HTTP 307 redirections.
  ☆77Updated 7 years ago
• phantom0301 / PTEye
  Phantom eye——A passive business logic vulnerability auditing tool
  ☆55Updated 6 years ago
• mwielgoszewski / jython-burp-api
  Develop Burp extensions in Jython
  ☆178Updated 8 years ago
• wuntee / BurpAuthzPlugin
  ☆76Updated 11 years ago
• atorralba / GHSL_CTF_4
  My solution for GitHub Security Lab CTF 4: CodeQL and Chill - The Java Edition
  ☆19Updated 4 years ago
• seecode-audit / clocwalk
  Project code and dependent component analysis tools.
  ☆2Updated last year
• Morningstar / GoASQ
  General Open Architecture Security Questionnaire
  ☆31Updated last year
• Marcono1234 / codeql-java-queries
  Personal CodeQL queries
  ☆64Updated 2 weeks ago
• ramshazar / orangetsai-springboot-actuator-poc
  ☆27Updated 4 years ago
• LeadroyaL / java_xxe_2019
  总结了一下2019年在JVM环境中使用XXE攻击的知识
  ☆57Updated 5 years ago
• veracode-research / actuator-testbed
  A vulnerable application exposing Spring Boot Actuators
  ☆122Updated 6 years ago
• ssexxe / XXEBugFind
  A tool for detecting XML External Entity (XXE) vulnerabilities in Java applications
  ☆72Updated 10 years ago
• GDSSecurity / JSSE_Fortify_SCA_Rules
  Custom Fortify SCA rules to detect common JSSE certification validation flaws
  ☆11Updated 9 years ago
• Maskhe / AxinSAST
  ☆10Updated 4 years ago
• niexinming / python_hook
  ☆51Updated 6 years ago
• jas502n / fastjson-RCE
  fastjson-1.2.47
  ☆66Updated 5 years ago