righettod / poc-csrf
POC in order to materialize CSRF prevention concepts described in the following OWASP CSRF cheatsheet
☆30Updated 7 years ago
Related projects: ⓘ
- The aim of this project is to protect Java applications against CSRF attacks with the use of Synchronizer Tokens☆78Updated 2 weeks ago
- OWASP CSRFGuard 3.1.0☆159Updated 2 years ago
- Coverity Security Library (CSL) is a lightweight set of escaping routines for fixing cross-site scripting (XSS), SQL injection, and other…☆201Updated 8 years ago
- Maven plugin for integrating with HCL AppScan Source☆9Updated 11 months ago
- An intentionally-vulnerable web application, ported from https://github.com/jzheaux/terracotta-bank-spring☆38Updated last year
- OWASP Security Logging library for Java☆113Updated 9 months ago
- Identify vulnerable libraries in Maven dependencies☆45Updated last year
- A Java library for calculating CVSSv2 and CVSSv3 scores and vectors☆36Updated this week
- POC in order to protect an document upload application feature against "malicious" document submission.☆42Updated 3 years ago
- Repository to showcase various configuration recipes with various technologies☆35Updated last year
- ☆92Updated this week
- Sample exploits of common vulnerabilities in Java librarires☆22Updated 9 months ago
- Glassfish SVN repository passive mirror - dead repository from bad old times☆11Updated 9 years ago
- RichFaces 5 - The next-generation JSF component framework by JBoss, Red Hat☆65Updated 6 years ago
- A tiny Java agent that blocks attacks against unsafe deserialization☆82Updated 6 years ago
- Java web and command line applications demonstrating various security topics☆235Updated 2 weeks ago
- This sample hooks Apache Fortress RBAC with Spring Security SAML SP and a common SAML 2.0 IdP☆8Updated 2 years ago
- A simple Java command-line utility to mirror the entire contents of VulnDB.☆42Updated 3 weeks ago
- OWASP SonarQube Project☆109Updated 5 years ago
- An insecure example application (Java)☆30Updated last week
- ☆14Updated 5 years ago
- Plattform to develop and experiment with existing java web attacks.☆31Updated 6 years ago
- A rule for the Maven enforcer plugin to check for vulnerable artifacts within a project.☆40Updated 3 years ago
- A darned-vulnerable Java web application - For educating on and practicing secure Java coding techniques☆22Updated 6 years ago
- a library for performing fast, configurable cleansing of HTML coming from untrusted sources☆186Updated this week
- JMSDigger is JMS API basedEnterprise Messaging Application assessment tool☆31Updated 10 years ago
- Vulnerability consolidation and management tool, enhances scan results by merging different findings of the same weakness across multiple…☆23Updated last year
- PicketLink is a security framework for securing Java EE applications.☆92Updated 5 years ago
- ☆34Updated 8 years ago
- This library was co-developed with a leading financial institution in order to build a single solution for Cross-Site Request Forgery (CS…☆20Updated 7 years ago