jeremylong / DependencyCheck
OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.
☆6,450Updated this week
Related projects ⓘ
Alternatives and complementary repositories for DependencyCheck
- The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala proje…☆2,283Updated 3 months ago
- Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supp…☆2,704Updated this week
- Snyk CLI scans and monitors your projects for security vulnerabilities.☆4,956Updated this week
- Integrates Dependency-Check reports into SonarQube☆602Updated 2 weeks ago
- ASOC, ASPM, DevSecOps, Vulnerability Management Using ArcherySec.☆2,295Updated last month
- OWASP API Security Project☆2,066Updated 3 weeks ago
- Web Application Security Scanner Framework☆3,787Updated last year
- scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.☆3,690Updated this week
- SpotBugs is FindBugs' successor. A tool for static analysis to look for bugs in Java code.☆3,517Updated this week
- Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more☆23,729Updated this week
- The ZAP by Checkmarx Core project☆12,751Updated this week
- A service that analyzes docker images and scans for vulnerabilities☆1,587Updated last year
- OWASP Benchmark is a test suite designed to verify the speed and accuracy of software vulnerability detection tools. A fully runnable web…☆670Updated 4 months ago
- Vulnerability Static Analysis for Containers☆10,367Updated this week
- Official OWASP Top 10 Document Repository☆4,337Updated 2 months ago
- w3af: web application attack and audit framework, the open source web vulnerability scanner.☆4,584Updated last year
- Application Security Verification Standard☆2,751Updated this week
- Hunt for security weaknesses in Kubernetes clusters☆4,764Updated 8 months ago
- Automated Security Testing For REST API's☆2,513Updated 5 months ago
- Using a pre-commit hook, Talisman validates the outgoing changeset for things that look suspicious — such as tokens, passwords, and priva…☆1,916Updated 4 months ago
- An enterprise friendly way of detecting and preventing secrets in code.☆3,831Updated 3 weeks ago
- The OWASP Guide☆2,045Updated last year
- Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices☆10,994Updated this week
- Reconnaissance tool for GitHub organizations☆5,940Updated 2 years ago
- Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…☆808Updated last year
- The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.☆4,399Updated this week
- Fast and powerful SSL/TLS scanning library.☆3,269Updated 3 months ago
- A vulnerability scanner for container images and filesystems☆8,838Updated this week
- Offensive Web Testing Framework (OWTF), is a framework which tries to unite great tools and make pen testing more efficient http://owtf.o…☆1,821Updated 3 weeks ago
- OWASP Community Pages are a place where OWASP can accept community contributions for security-related content.☆1,132Updated this week