Alternatives and similar repositories for victims-cve-db

Users that are interested in victims-cve-db are comparing it to the libraries listed below

• srcclr / efda
  Evaluation Framework for Dependency Analysis (EFDA)
  ☆43Updated 3 years ago
• GDSSecurity / GDS-PMD-Security-Rules
  Custom security ruleset for the popular Java static analysis tool PMD.
  ☆61Updated 9 years ago
• denimgroup / threadfix
  ThreadFix is a software vulnerability management platform. This GitHub site is far out of date. Please go to www.threadfix.it for up-to-d…
  ☆339Updated 2 years ago
• thesp0nge / owasp-orizon
  Owasp Orizon is a source code static analyzer tool designed to spot security issues in Java applications.
  ☆144Updated 8 years ago
• mozilla / minion
  Minion
  ☆354Updated 6 years ago
• victims / maven-security-versions
  Identify vulnerable libraries in Maven dependencies
  ☆46Updated 2 years ago
• foospidy / GrepBugs
  A regex based source code scanner.
  ☆129Updated 8 years ago
• Contrast-Security-OSS / contrast-rO0
  A tiny Java agent that blocks attacks against unsafe deserialization
  ☆85Updated 7 years ago
• h3xstream / find-sec-bugs
  The FindBugs plugin for security audits of Java web applications and Android applications. (Also work with Scala and Groovy projects)
  ☆21Updated last year
• kantega / notsoserial
  Java Agent which mitigates deserialisation attacks by making certain classes unserializable
  ☆188Updated 9 years ago
• ironbee / waf-research
  WAF Research
  ☆180Updated 3 years ago
• noxxi / p5-app-dubioushttp
  use ambiguous HTTP to circumvent security systems
  ☆94Updated last year
• dxa4481 / Damn-Vulnerable-Redis-Container
  An example of obtaining RCE via Redis and CSRF
  ☆76Updated 8 years ago
• eBay / DASTProxy
  ☆58Updated 6 months ago
• breenmachine / JavaUnserializeExploits
  ☆133Updated 9 years ago
• mozilla / Garmr
  INACTIVE - Security Testing Tool
  ☆107Updated 9 years ago
• Contrast-Security-OSS / jinfinity
  An API for consuming all the memory of Java apps using deserialization
  ☆28Updated 9 years ago
• bedirhan / wivet
  Web Input Vector Extractor Teaser
  ☆132Updated 3 years ago
• zmap / ztag
  Tagging and annotation framework for scan data
  ☆101Updated 6 years ago
• scovetta / yasca
  Yet Another Source Code Analyzer
  ☆184Updated 3 years ago
• FiloSottile / CVE-2016-2107
  Simple test for the May 2016 OpenSSL padding oracle (CVE-2016-2107)
  ☆190Updated 6 years ago
• topolik / ois-dos
  Java Deserialization
  ☆26Updated 8 years ago
• jtmelton / appsensor
  A toolkit for building self-defending applications through real-time event detection and response
  ☆282Updated 2 years ago
• SafeBreach-Labs / pyekaboo
  Proof-of-concept program that is able to to hijack/hook/proxy Python module(s) thanks to $PYTHONPATH variable
  ☆152Updated 8 years ago
• felixgr / pytaint
  ☆34Updated 11 years ago
• tomsteele / burpbuddy
  burpbuddy exposes Burp Suites's extender API over the network through various mediums, with the goal of enabling development in any langu…
  ☆157Updated 6 years ago
• cr0hn / enteletaor
  Message Queue & Broker Injection tool
  ☆150Updated 2 years ago
• wallarm / libdetection
  Signature-free approach library to detect injection and commanding attacks
  ☆94Updated 3 years ago
• evilpacket / xss.io
  ☆73Updated 12 years ago
• codedx / codepulse
  Code Pulse is a real-time code coverage tool for penetration testing activities
  ☆122Updated 2 years ago