Alternatives and similar repositories for victims-cve-db

Users that are interested in victims-cve-db are comparing it to the libraries listed below

• thesp0nge / owasp-orizon
  Owasp Orizon is a source code static analyzer tool designed to spot security issues in Java applications.
  ☆146Updated 8 years ago
• kantega / notsoserial
  Java Agent which mitigates deserialisation attacks by making certain classes unserializable
  ☆191Updated 9 years ago
• srcclr / efda
  Evaluation Framework for Dependency Analysis (EFDA)
  ☆44Updated 3 years ago
• denimgroup / threadfix
  ThreadFix is a software vulnerability management platform. This GitHub site is far out of date. Please go to www.threadfix.it for up-to-d…
  ☆341Updated 3 years ago
• Contrast-Security-OSS / contrast-rO0
  A tiny Java agent that blocks attacks against unsafe deserialization
  ☆86Updated 8 years ago
• mozilla / minion
  Minion
  ☆355Updated 6 years ago
• h3xstream / find-sec-bugs
  The FindBugs plugin for security audits of Java web applications and Android applications. (Also work with Scala and Groovy projects)
  ☆21Updated last year
• Contrast-Security-OSS / jinfinity
  An API for consuming all the memory of Java apps using deserialization
  ☆28Updated 9 years ago
• GDSSecurity / GDS-PMD-Security-Rules
  Custom security ruleset for the popular Java static analysis tool PMD.
  ☆61Updated 10 years ago
• eBay / DASTProxy
  ☆59Updated 11 months ago
• foospidy / GrepBugs
  A regex based source code scanner.
  ☆127Updated 8 years ago
• SafeBreach-Labs / pyekaboo
  Proof-of-concept program that is able to to hijack/hook/proxy Python module(s) thanks to $PYTHONPATH variable
  ☆153Updated 8 years ago
• victims / maven-security-versions
  Identify vulnerable libraries in Maven dependencies
  ☆46Updated 3 years ago
• frohoff / inspector-gadget
  Primitive tool for exploring/querying Java classes via the Tinkerpop Gremlin graph traversal language
  ☆108Updated 9 years ago
• noxxi / p5-app-dubioushttp
  use ambiguous HTTP to circumvent security systems
  ☆94Updated 2 years ago
• neraliu / tainted-phantomjs
  Tainted PhantomJS
  ☆52Updated 10 years ago
• ironbee / waf-research
  WAF Research
  ☆183Updated 3 years ago
• codedx / codepulse
  Code Pulse is a real-time code coverage tool for penetration testing activities
  ☆122Updated 3 years ago
• scovetta / yasca
  Yet Another Source Code Analyzer
  ☆184Updated 3 years ago
• wkcaj / safecurl
  SSRF Protection Library for PHP - http://safecurl.fin1te.net
  ☆73Updated 2 years ago
• dxa4481 / Damn-Vulnerable-Redis-Container
  An example of obtaining RCE via Redis and CSRF
  ☆76Updated 9 years ago
• FiloSottile / CVE-2016-2107
  Simple test for the May 2016 OpenSSL padding oracle (CVE-2016-2107)
  ☆191Updated 6 years ago
• bedirhan / wivet
  Web Input Vector Extractor Teaser
  ☆132Updated 3 years ago
• openstack-archive / syntribos
  Python API security testing tool from OpenStack Security Group
  ☆276Updated 5 years ago
• evilpacket / xss.io
  ☆73Updated 12 years ago
• vulndb / data
  User, contributor and developer friendly vulnerability database
  ☆128Updated 7 years ago
• 0xcite / fingerping
  A security tool to fingerprint PNG libraries used by web applications
  ☆81Updated 6 years ago
• cschneider4711 / SWAT
  Serial Whitelist Application Trainer
  ☆30Updated 6 years ago
• breenmachine / JavaUnserializeExploits
  ☆132Updated 10 years ago
• jtmelton / appsensor
  A toolkit for building self-defending applications through real-time event detection and response
  ☆284Updated 3 years ago