Alternatives and similar repositories for efda:

Users that are interested in efda are comparing it to the libraries listed below

• spoofzu / jvmxray
  Externalize Java application access to protected resources as log messages.
  ☆40Updated 9 months ago
• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆141Updated 11 months ago
• stevespringett / vulndb-data-mirror
  A simple Java command-line utility to mirror the entire contents of VulnDB.
  ☆44Updated 2 months ago
• victims / maven-security-versions
  Identify vulnerable libraries in Maven dependencies
  ☆46Updated 2 years ago
• SAP / project-kb
  Home page of project "KB"
  ☆117Updated 2 months ago
• Fraunhofer-AISEC / codyze
  Codyze is a static analyzer for Java, C, C++ based on code property graphs
  ☆88Updated 3 weeks ago
• stevespringett / CPE-Parser
  A utility for validating and parsing Common Platform Enumeration (CPE) v2.2 and v2.3 as originally defined by MITRE and maintained by NIS…
  ☆48Updated last month
• Contrast-Security-OSS / contrast-rO0
  A tiny Java agent that blocks attacks against unsafe deserialization
  ☆83Updated 7 years ago
• victims / victims-cve-db
  CVE database store
  ☆130Updated 4 years ago
• Morningstar / GoASQ
  General Open Architecture Security Questionnaire
  ☆31Updated last year
• Contrast-Security-OSS / joogle
  A static analysis API for finding deserialization attack gadgets
  ☆38Updated 2 years ago
• GDSSecurity / GDS-PMD-Security-Rules
  Custom security ruleset for the popular Java static analysis tool PMD.
  ☆61Updated 9 years ago
• joshbressers / cve-analysis
  Tools for conducting analysis of CVE data in Elasticsearch
  ☆74Updated 7 months ago
• find-sec-bugs / juliet-test-suite
  A collection of test cases in the Java language. It contains examples for 112 different CWEs.
  ☆53Updated 3 years ago
• srcclr / build-inspector
  Inspect your builds to look for changes in filesystem, network traffic and running processes.
  ☆13Updated 6 years ago
• cve-search / VIA4CVE
  Vulnerability Information Aggregator for CVEs
  ☆118Updated 5 years ago
• cdaller / security_taint_propagation
  Java taint propagation for java. Define tainted sources, sanitizer methods and sinks via aspects.
  ☆28Updated 6 years ago
• OWASP / Software-Component-Verification-Standard
  Software Component Verification Standard (SCVS)
  ☆140Updated 10 months ago
• checkmarx-ts / checkmarx-python-sdk
  Checkmarx Python SDK
  ☆27Updated this week
• ajinabraham / libsast
  Generic SAST Library
  ☆127Updated 3 months ago
• stevespringett / threatmodel-sdk
  A Java library for parsing and programmatically using threat models
  ☆79Updated 2 years ago
• cxai / Checkmarx-PowerTools
  A collection of various scripts and automations to simplify Checkmarx SAST and IAST setup and use
  ☆14Updated 6 years ago
• stevespringett / cvss-calculator
  A Java library for calculating CVSSv2 and CVSSv3 scores and vectors
  ☆44Updated 2 months ago
• lirantal / cwe-sdk
  A Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC
  ☆10Updated 4 years ago
• eBay / DASTProxy
  ☆58Updated last month
• Contrast-Security-OSS / safelog4j
  Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning …
  ☆41Updated 8 months ago
• thesp0nge / owasp-orizon
  Owasp Orizon is a source code static analyzer tool designed to spot security issues in Java applications.
  ☆144Updated 7 years ago
• SAP / risk-explorer-for-software-supply-chains
  A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…
  ☆75Updated last month
• hakbot / hakbot-origin-controller
  Vendor-Neutral Security Tool Automation Controller (over REST)
  ☆29Updated 5 years ago
• ConstantinT / jAEk
  This is the repository for JÄk. I created it as prototype during my masterthesis.
  ☆30Updated 7 years ago