jzheaux / terracotta-bank
A darned-vulnerable Java web application - For educating on and practicing secure Java coding techniques
☆22Updated 6 years ago
Related projects: ⓘ
- An intentionally-vulnerable web application, ported from https://github.com/jzheaux/terracotta-bank-spring☆38Updated last year
- POC in order to materialize CSRF prevention concepts described in the following OWASP CSRF cheatsheet☆30Updated 7 years ago
- POC about usage of JSON Web Tokens (JWT) in a secure way.☆28Updated 5 years ago
- Sample exploits of common vulnerabilities in Java librarires☆22Updated 9 months ago
- OWASP Security Logging library for Java☆113Updated 9 months ago
- Spring-based Version of Terracotta Bank☆23Updated 5 years ago
- JMSDigger is JMS API basedEnterprise Messaging Application assessment tool☆31Updated 10 years ago
- A tiny Java agent that blocks attacks against unsafe deserialization☆82Updated 6 years ago
- ☆57Updated 2 years ago
- Vulnerable Java based Web Application☆31Updated 5 years ago
- ☆14Updated 5 years ago
- Repository to showcase various configuration recipes with various technologies☆35Updated last year
- ZAP Java API☆45Updated 3 months ago
- A botwall for Java web applications☆42Updated 2 years ago
- A deliberately insecure Java web application☆34Updated 2 months ago
- A Java library for calculating CVSSv2 and CVSSv3 scores and vectors☆36Updated this week
- The BeerSafe application for the Web Security Fundamentals MOOC☆16Updated 6 years ago
- A Basic Spring JPA app with an H2 DB☆34Updated 3 years ago
- Learn Spring Security step by step☆15Updated last year
- POC in order to protect an document upload application feature against "malicious" document submission.☆42Updated 3 years ago
- Maven plugin for integrating with HCL AppScan Source☆9Updated 11 months ago
- ☆34Updated 8 years ago
- OWASP CSRFGuard 3.1.0☆159Updated 2 years ago
- The aim of this project is to protect Java applications against CSRF attacks with the use of Synchronizer Tokens☆78Updated 2 weeks ago
- A proof of concept project that demonstrates oWASP.org's top 10 web vulnerabilities☆22Updated 9 years ago
- Complimenting code to Java Crypto Blog series, at https://www.veracode.com/blog/research/how-get-started-using-java-cryptography-securely☆56Updated 4 years ago
- Serial Whitelist Application Trainer☆29Updated 5 years ago
- Java Agent which mitigates deserialisation attacks by making certain classes unserializable☆183Updated 8 years ago
- OWASP SonarQube Project☆109Updated 5 years ago
- Automated solving script for the OWASP Juice Shop☆26Updated last year