veracode / verademo

Related projects ⓘ

Alternatives and complementary repositories for verademo

• CSPF-Founder / VulnerableSpring
  Vulnerable Java based Web Application
  ☆31Updated 5 years ago
• spoofzu / jvmxray
  Externalize Java application access to protected resources as log messages.
  ☆41Updated 5 months ago
• rcseacord / JavaSCR
  Secure Coding Rules for Java
  ☆30Updated last month
• appsecco / dvja
  Damn Vulnerable Java (EE) Application
  ☆130Updated 9 months ago
• Contrast-Security-OSS / safelog4j
  Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning …
  ☆41Updated 4 months ago
• ShiftLeftSecurity / flask-webgoat
  flask-webgoat is a deliberately-vulnerable application written with the Flask web framework.
  ☆19Updated 4 months ago
• hakbot / hakbot-origin-controller
  Vendor-Neutral Security Tool Automation Controller (over REST)
  ☆29Updated 5 years ago
• we45 / RoboZap
  ☆32Updated last year
• find-sec-bugs / find-sec-bugs-demos
  Repository to showcase various configuration recipes with various technologies
  ☆35Updated last year
• anirudhduggal / medaudit
  A tool for auditing medical devices and healthcare infrastructure
  ☆21Updated last year
• bbossola / vulnerability-java-samples
  Sample exploits of common vulnerabilities in Java librarires
  ☆23Updated 10 months ago
• planetlevel / jot
  Java Observability Toolkit
  ☆61Updated 5 months ago
• federicodotta / semgrep-rules
  A collection of my Semgrep rules
  ☆47Updated last year
• no-sec-marko / java-web-vulnerabilities
  Plattform to develop and experiment with existing java web attacks.
  ☆31Updated 6 years ago
• semgrep-old / rules-owasp-asvs
  Semgrep rules corresponding to the OWASP ASVS standard
  ☆27Updated 4 years ago
• OWASP / owasp-cstg
  ☆31Updated 4 years ago
• kempy007 / VulManAgg
  Docs: Vulnerability management aggregation of AppSec & OpSec (Tools Listing)
  ☆30Updated last year
• OWASP / threat-modeling-playbook
  ☆30Updated 2 years ago
• ScaleSec / vulnado
  Purposely vulnerable Java application to help lead secure coding workshops
  ☆168Updated 4 months ago
• secdec / attack-surface-detector-burp
  The Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
  ☆98Updated 10 months ago
• Checkmarx / Goatlin
  (aka Kotlin Goat) - an intentionally vulnerable Kotlin application
  ☆33Updated 6 months ago
• RUB-NDS / BurpSSOExtension
  An extension for BurpSuite that highlights SSO messages in Burp's proxy window..
  ☆117Updated 3 years ago
• rusakovichma / TicTaaC
  Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …
  ☆55Updated 4 months ago
• hdiv / insecure-bank
  An insecure example application (Java)
  ☆32Updated last week
• iriusrisk / Community
  IriusRisk Community
  ☆62Updated last year
• sec4you / VulnLabs
  docker-compose bringing up multiple vulnerable applications inside containers.
  ☆18Updated 6 years ago
• Contrast-Security-OSS / vulnerable-spring-boot-application
  ☆13Updated 6 months ago
• rafaelrpinto / VulnerableJavaWebApplication
  A Java Web Application with common legacy security flaws for tests with Arachni Scanner and ModSecurity
  ☆21Updated 4 months ago
• hvqzao / java-deserialize-webapp
  Vulnerable webapp testbed
  ☆20Updated 8 years ago
• abhisek / supply-chain-security-gateway
  Reference architecture and proof of concept implementation for supply chain security gateway
  ☆23Updated last year