Alternatives and similar repositories for python-fortify

Users that are interested in python-fortify are comparing it to the libraries listed below

• mbechler / serianalyzer
  A static byte code analyzer for Java deserialization gadget research
  ☆244Updated 8 years ago
• Contrast-Security-OSS / joogle
  A static analysis API for finding deserialization attack gadgets
  ☆38Updated 2 years ago
• appsecco / json-flash-csrf-poc
  This repo contains the files required to perform a CSRF attack using Flash and HTTP 307 redirections.
  ☆77Updated 7 years ago
• githubsatelliteworkshops / codeql
  GitHub Satellite 2020 workshops on finding security vulnerabilities with CodeQL for Java/JavaScript.
  ☆210Updated 9 months ago
• cdaller / security_taint_propagation
  Java taint propagation for java. Define tainted sources, sanitizer methods and sinks via aspects.
  ☆28Updated 6 years ago
• irsl / jackson-rce-via-spel
  An example project that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions
  ☆123Updated 7 years ago
• Marcono1234 / codeql-java-queries
  Personal CodeQL queries
  ☆64Updated last week
• codeplutos / java-security-manager-bypass
  ☆148Updated 6 years ago
• advanced-security / custom-codeql-bundle
  An example repository that demonstrates how the build custom CodeQL bundles that include query customizations through the `Customizations…
  ☆25Updated 3 years ago
• mwielgoszewski / jython-burp-api
  Develop Burp extensions in Jython
  ☆178Updated 8 years ago
• angelwhu / jvm-rasp
  基于JVM-Sandbox实现RASP安全监控防护
  ☆52Updated last year
• PortSwigger / json-web-token-attacker
  ☆108Updated 3 years ago
• Bypass007 / vuln
  Record some Vulnerabilities
  ☆44Updated 2 years ago
• imagemlt / myQLrules
  some codeql rules
  ☆15Updated 5 years ago
• veracode-research / actuator-testbed
  A vulnerable application exposing Spring Boot Actuators
  ☆122Updated 6 years ago
• pwntester / XStreamPOC
  POC for XStream RCE
  ☆13Updated 11 years ago
• julianvilas / rooted2k15
  Additional materials for RootedCON 2015 Apache Struts talk
  ☆30Updated 10 years ago
• Anemone95 / JSecCode
  A Vulnerable Web App written by JavaScript (Vue+Egg)
  ☆12Updated 8 months ago
• ryohare / fortify-structural-rules-guide
  A technique for developing Fortify structural rules and characterization rules.
  ☆14Updated 5 years ago
• advanced-security / codeql-queries
  [Deprecated] GitHub's Field Team's CodeQL Custom Queries, Suites, and Configurations. See GitHubSecurityLab/CodeQL-Community-Packs instea…
  ☆83Updated last year
• summitt / burp-ysoserial
  YSOSERIAL Integration with burp suite
  ☆166Updated 2 years ago
• frohoff / inspector-gadget
  Primitive tool for exploring/querying Java classes via the Tinkerpop Gremlin graph traversal language
  ☆107Updated 9 years ago
• wuntee / BurpAuthzPlugin
  ☆76Updated 11 years ago
• we1h0 / Security-Development-Lifecycle-Reference
  Security Development LifeCycle Process (安全开发生命周期参考)
  ☆27Updated 6 years ago
• hex0wn / learn-java-bug
  ☆73Updated 3 years ago
• tgianko / deemon
  Deemon is a tool to detect CSRF in web applications. Deemon has been used for the paper "Deemon: Detecting CSRF with Dynamic Analysis and…
  ☆75Updated 7 years ago
• Morningstar / GoASQ
  General Open Architecture Security Questionnaire
  ☆31Updated last year
• SaneBow / redirect-fuzzer
  Fuzzing script for redirect URL validator
  ☆52Updated 5 years ago
• mogwailabs / rmi-deserialization
  Slides/Demos from the BSides Munich 2019 talk "Attacking Java RMI in 2019"
  ☆100Updated 5 years ago
• ramshazar / orangetsai-springboot-actuator-poc
  ☆27Updated 4 years ago