Alternatives and similar repositories for fortify-plugin

Users that are interested in fortify-plugin are comparing it to the libraries listed below

• fortify / ssc-restapi-client
  Communicate with Fortify Software Security Center through REST API in java, a swagger generated client
  ☆19Updated 5 months ago
• Contrast-Security-OSS / vulnerable-spring-boot-application
  ☆15Updated 2 months ago
• stevespringett / nist-data-mirror
  A simple Java command-line utility to mirror the CVE JSON data from NIST.
  ☆212Updated 3 years ago
• OtherDevOpsGene / zap-sonar-plugin
  Integrates OWASP Zed Attack Proxy reports into SonarQube
  ☆73Updated 5 months ago
• jenkinsci / dependency-check-plugin
  Jenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).
  ☆137Updated last month
• cxai / Checkmarx-PowerTools
  A collection of various scripts and automations to simplify Checkmarx SAST and IAST setup and use
  ☆14Updated 7 years ago
• OWASP / sonarqube
  OWASP SonarQube Project
  ☆111Updated 6 years ago
• jenkinsci / webinspect-plugin
  Jenkins WebInspect Plugin Publisher provides the ability to upload a WebInspect scan file, from your Jenkins server to your Fortify Softw…
  ☆11Updated this week
• jenkinsci / snyk-security-scanner-plugin
  Test and monitor your projects for vulnerabilities with Jenkins. This plugin is officially maintained by Snyk.
  ☆61Updated last month
• blackducksoftware / hub
  Black Duck Docker Orchestration Files/Documentation
  ☆132Updated last week
• blackducksoftware / blackduck-docker-inspector
  ☆21Updated 3 years ago
• fortify-ps / fortify-integration-sonarqube
  Fortify SonarQube Plugin
  ☆22Updated 4 years ago
• andrealbinop / Dockerfiles
  This repository contains all base Dockerfiles for Docker that I use, and are available at Docker registry.
  ☆68Updated 6 years ago
• RIGS-IT / sonar-xanitizer
  Integrates Xanitizer results into SonarQube
  ☆21Updated 4 years ago
• DDuarte / springshell-rce-poc
  CVE-2022-22965 - CVE-2010-1622 redux
  ☆19Updated 2 years ago
• appsecco / defcon-26-workshop-attacking-and-auditing-docker-containers
  DEF CON 26 Workshop - Attacking & Auditing Docker Containers Using Open Source
  ☆109Updated 6 years ago
• victims / maven-security-versions
  Identify vulnerable libraries in Maven dependencies
  ☆46Updated 3 years ago
• checkmarx-ltd / cx-flow
  Checkmarx Scan and Result Orchestration
  ☆99Updated this week
• PortSwigger / java-deserialization-scanner
  All-in-one plugin for Burp Suite for the detection and the exploitation of Java deserialization vulnerabilities
  ☆28Updated 3 years ago
• jenkinsci / zap-plugin
  The OWASP ZAP Jenkins Plugin extends the functionality of the ZAP security tool into a CI Environment.
  ☆59Updated last year
• kiview / damn-vulnerable-spring-boot-app
  Spring-Boot app for demonstrating security vulnaribilities
  ☆13Updated 6 years ago
• snyk-labs / java-goof
  ☆102Updated last week
• SonarQubeCommunity / sonar-fortify
  Fortify SCA Plugin for SonarQube
  ☆14Updated 4 years ago
• secureCodeBox / secureCodeBox-v2
  This Repository contains the stable beta preview of the next major secureCodeBox (SCB) release v2.0.0.
  ☆23Updated 5 years ago
• OWASP / www-project-cloud-native-application-security-top-10
  OWASP Foundation Web Respository
  ☆37Updated 2 months ago
• stevespringett / cvss-calculator
  A Java library for calculating CVSSv2, CVSSv3, and CVSSv4 scores and vectors
  ☆50Updated 3 weeks ago
• eclipse-steady / steady
  Analyses your Java applications for open-source dependencies with known vulnerabilities, using both static analysis and testing to determ…
  ☆542Updated 2 years ago
• danielsagi / kube-pod-escape
  Kubernetes POC for utilizing write mount to /var/log for getting a root on the host
  ☆99Updated 5 years ago
• stevespringett / vulndb-data-mirror
  A simple Java command-line utility to mirror the entire contents of VulnDB.
  ☆48Updated 5 months ago
• srcclr / efda
  Evaluation Framework for Dependency Analysis (EFDA)
  ☆44Updated 3 years ago