Alternatives and similar repositories for java-goof

Users that are interested in java-goof are comparing it to the libraries listed below

• OWASP / www-project-code-review-guide
  OWASP Code Review Guide Web Repository
  ☆148Updated 3 years ago
• OpenSecuritySummit / oss-website
  The Open Security Summit is focused on the collaboration between, Developers and Application Security
  ☆45Updated 6 months ago
• mgreiler / code-reviews
  code reviews to practice
  ☆18Updated 4 years ago
• ShiftLeftSecurity / tarpit-java
  Tarpit - A Web application seeded with vulnerabilities, rootkits, backdoors & data leaks
  ☆82Updated 3 years ago
• OWASP / www-project-cloud-native-application-security-top-10
  OWASP Foundation Web Respository
  ☆37Updated 4 months ago
• ScaleSec / vulnado
  Purposely vulnerable Java application to help lead secure coding workshops
  ☆191Updated last year
• appsecco / dvja
  Damn Vulnerable Java (EE) Application
  ☆144Updated 2 years ago
• OWASP / www-project-secure-coding-practices-quick-reference-guide
  OWASP Foundation Project Web Repository for Secure Coding Practices Quick-reference Guide
  ☆71Updated last year
• OWASP / www-project-proactive-controls
  OWASP Foundation Web Respository
  ☆164Updated 2 weeks ago
• pumasecurity / puma-prey
  Puma Prey contains vulnerable .NET target applications to test the Puma Scan rules against. This project contains Web Forms, MVC5, and Co…
  ☆21Updated 5 months ago
• ivision-research / vulnerable-graphql-api
  A very vulnerable implementation of a GraphQL API.
  ☆61Updated 4 years ago
• koenbuyens / oauth-2.0-security-cheat-sheet
  oauth security guidelines
  ☆230Updated 6 years ago
• Contrast-Security-OSS / safelog4j
  Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning …
  ☆43Updated 4 months ago
• Checkmarx / dustilock
  DustiLock is a tool to find which of your dependencies is susceptible to a Dependency Confusion attack.
  ☆40Updated 4 years ago
• semgrep-old / rules-owasp-asvs
  Semgrep rules corresponding to the OWASP ASVS standard
  ☆27Updated 5 years ago
• RhinoSecurityLabs / Swagger-EZ
  A tool geared towards pentesting APIs using OpenAPI definitions.
  ☆185Updated 3 years ago
• OWASP / Software-Component-Verification-Standard
  Software Component Verification Standard (SCVS)
  ☆153Updated 10 months ago
• Probely / security_checklist
  Web Application Security Checklist
  ☆135Updated 9 months ago
• DevSlop / Pixi
  The Pixi module is a MEAN Stack web app with wildly insecure APIs!
  ☆132Updated 3 years ago
• zapbot / zap-mgmt-scripts
  ZAP Management Scripts
  ☆23Updated last month
• ossf / security-reviews
  A community collection of security reviews of open source software components.
  ☆96Updated last year
• snyk-labs / exploit-workshop
  A step by step workshop to exploit various vulnerabilities in Node.js and Java applications
  ☆157Updated last year
• kaakaww / vuln-graphql-api
  A very vulnerable implementation of a GraphQL API.
  ☆17Updated last week
• NotSoSecure / cloud-sec-wiki
  Jekyll Files for cloudsecwiki.com
  ☆49Updated 4 years ago
• hdiv / insecure-bank
  An insecure example application (Java)
  ☆33Updated 5 months ago
• OWASP / cwe-tool
  A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.
  ☆62Updated 8 months ago
• PortSwigger / aws-security-checks
  AWS Security Checks
  ☆40Updated 8 years ago
• DefectDojo / Burp-Plugin
  A Burp plugin to export findings to DefectDojo
  ☆31Updated 2 years ago
• we45 / orchestron-community
  Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…
  ☆31Updated 3 years ago
• SecurityRAT / SecurityRAT
  OWASP SecurityRAT (version 1.x) - Tool for handling security requirements in development
  ☆186Updated 5 months ago