veracode / verademo

Related projects ⓘ

Alternatives and complementary repositories for verademo

• CSPF-Founder / VulnerableSpring
  Vulnerable Java based Web Application
  ☆31Updated 5 years ago
• bbossola / vulnerability-java-samples
  Sample exploits of common vulnerabilities in Java librarires
  ☆23Updated 11 months ago
• Checkmarx / Goatlin
  (aka Kotlin Goat) - an intentionally vulnerable Kotlin application
  ☆33Updated 7 months ago
• appsecco / dvja
  Damn Vulnerable Java (EE) Application
  ☆130Updated 10 months ago
• spoofzu / jvmxray
  Externalize Java application access to protected resources as log messages.
  ☆41Updated 6 months ago
• we45 / RoboZap
  ☆32Updated last year
• Contrast-Security-OSS / safelog4j
  Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning …
  ☆41Updated 5 months ago
• semgrep-old / rules-owasp-asvs
  Semgrep rules corresponding to the OWASP ASVS standard
  ☆27Updated 4 years ago
• rafaelrpinto / VulnerableJavaWebApplication
  A Java Web Application with common legacy security flaws for tests with Arachni Scanner and ModSecurity
  ☆21Updated 4 months ago
• hdiv / insecure-bank
  An insecure example application (Java)
  ☆32Updated this week
• ScaleSec / vulnado
  Purposely vulnerable Java application to help lead secure coding workshops
  ☆169Updated 4 months ago
• we45 / orchestron-community
  Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…
  ☆31Updated 2 years ago
• rcseacord / JavaSCR
  Secure Coding Rules for Java
  ☆30Updated last month
• tuannq2299 / semgrep-rules
  A collection of Semgrep rules which followed security guidelines for .NET and Java.
  ☆16Updated 3 years ago
• ShiftLeftSecurity / tarpit-java
  Tarpit - A Web application seeded with vulnerabilities, rootkits, backdoors & data leaks
  ☆76Updated 2 years ago
• federicodotta / semgrep-rules
  A collection of my Semgrep rules
  ☆47Updated last year
• stacscan / stacs
  Static Token And Credential Scanner
  ☆95Updated last year
• hakbot / hakbot-origin-controller
  Vendor-Neutral Security Tool Automation Controller (over REST)
  ☆29Updated 5 years ago
• akabe1 / akabe1-semgrep-rules
  My collection of Semgrep rules for vulnerability detection on source code (swift, java)
  ☆32Updated 8 months ago
• secdec / attack-surface-detector-burp
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆98Updated 11 months ago
• PortSwigger / headless-burp
  Provides a suite of Burp extensions and a maven plugin to automate security tests using BurpSuite.
  ☆25Updated 6 years ago
• OWASP / www-project-cloud-native-application-security-top-10
  OWASP Foundation Web Respository
  ☆33Updated 2 months ago
• kempy007 / VulManAgg
  Docs: Vulnerability management aggregation of AppSec & OpSec (Tools Listing)
  ☆30Updated last year
• augustd / burp-suite-software-version-checks
  Burp extension to passively scan for applications revealing software version numbers
  ☆30Updated 5 months ago
• we45 / ZAP-Mini-Workshop
  Interactive IPython Notebook to demonstrate OWASP ZAP's API and Scripting Functions - OWASP ZAP 2.8.0
  ☆41Updated last year
• iriusrisk / Community
  IriusRisk Community
  ☆62Updated last year
• pumasecurity / puma-prey
  Puma Prey contains vulnerable .NET target applications to test the Puma Scan rules against. This project contains Web Forms, MVC5, and Co…
  ☆20Updated 7 months ago
• sec4you / VulnLabs
  docker-compose bringing up multiple vulnerable applications inside containers.
  ☆18Updated 6 years ago
• 0ang3el / Unsafe-JAX-RS-Burp
  Burp Suite extension for JAX-RS
  ☆65Updated 7 years ago
• DefectDojo / defectdojo_api
  Python API library for DefectDojo
  ☆40Updated last year