Alternatives and similar repositories for efda

Users that are interested in efda are comparing it to the libraries listed below

• spoofzu / jvmxray
  Externalize Java application access to protected resources as log messages.
  ☆43Updated 2 months ago
• find-sec-bugs / find-sec-bugs-demos
  Repository to showcase various configuration recipes with various technologies
  ☆37Updated 3 years ago
• OWASP-Benchmark / BenchmarkJava
  OWASP Benchmark is a test suite designed to verify the speed and accuracy of software vulnerability detection tools. A fully runnable web…
  ☆761Updated this week
• victims / victims-cve-db
  CVE database store
  ☆132Updated 5 years ago
• ajinabraham / libsast
  Generic SAST Library
  ☆134Updated 6 months ago
• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆159Updated last year
• thesp0nge / owasp-orizon
  Owasp Orizon is a source code static analyzer tool designed to spot security issues in Java applications.
  ☆146Updated 8 years ago
• cdaller / security_taint_propagation
  Java taint propagation for java. Define tainted sources, sanitizer methods and sinks via aspects.
  ☆29Updated 7 years ago
• SAP / project-kb
  Home page of project "KB"
  ☆132Updated 9 months ago
• Morningstar / GoASQ
  General Open Architecture Security Questionnaire
  ☆32Updated 2 years ago
• Fraunhofer-AISEC / codyze
  Codyze is a static analyzer for Java, C, C++ based on code property graphs
  ☆91Updated 11 months ago
• joshbressers / cve-analysis
  Tools for conducting analysis of CVE data in Elasticsearch
  ☆73Updated 5 months ago
• Contrast-Security-OSS / contrast-rO0
  A tiny Java agent that blocks attacks against unsafe deserialization
  ☆86Updated 8 years ago
• eclipse-steady / steady
  Analyses your Java applications for open-source dependencies with known vulnerabilities, using both static analysis and testing to determ…
  ☆542Updated 2 years ago
• SAP-archive / node-rasp
  An extended Node.js runtime with additional security mechanisms built-in. Protects your Node.js applications from injection attacks such …
  ☆31Updated 4 years ago
• stevespringett / CPE-Parser
  A utility for validating and parsing Common Platform Enumeration (CPE) v2.2 and v2.3 as originally defined by MITRE and maintained by NIS…
  ☆54Updated this week
• sectooladdict / wavsep
  The Web Application Vulnerability Scanner Evaluation Project
  ☆239Updated 3 years ago
• GDSSecurity / GDS-PMD-Security-Rules
  Custom security ruleset for the popular Java static analysis tool PMD.
  ☆61Updated 10 years ago
• codedx / codepulse
  Code Pulse is a real-time code coverage tool for penetration testing activities
  ☆122Updated 3 years ago
• bedirhan / wivet
  Web Input Vector Extractor Teaser
  ☆132Updated 4 years ago
• cxai / Checkmarx-PowerTools
  A collection of various scripts and automations to simplify Checkmarx SAST and IAST setup and use
  ☆14Updated 7 years ago
• fkie-cad / iva
  IVA is a system to scan for known vulnerabilities in software products installed inside an organization. IVA uses CPE identifiers to sear…
  ☆67Updated 4 years ago
• jaxley / python-fortify
  Read and write Fortify Project (FPR) files in Python
  ☆41Updated 6 years ago
• NetsOSS / headless-burp
  Automate security tests using Burp Suite.
  ☆233Updated last year
• find-sec-bugs / juliet-test-suite
  A collection of test cases in the Java language. It contains examples for 112 different CWEs.
  ☆60Updated 4 years ago
• hakbot / hakbot-origin-controller
  Vendor-Neutral Security Tool Automation Controller (over REST)
  ☆28Updated 6 years ago
• olbat / nvdcve
  NVD/CVE as JSON files
  ☆123Updated this week
• Contrast-Security-OSS / joogle
  A static analysis API for finding deserialization attack gadgets
  ☆38Updated 3 years ago
• scovetta / yasca
  Yet Another Source Code Analyzer
  ☆184Updated 3 years ago
• felixgr / pytaint
  ☆34Updated 12 years ago