SecHub provides a central API to test software with different security tools.
-
Updated
Jun 13, 2024 - Java
SecHub provides a central API to test software with different security tools.
Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.
ZAP Add-ons
Ziti SDK for JVM
The ZAP core project
Java web and command line applications demonstrating various security topics
Jenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).
Main repository for the official Dependency-Track Jenkins plugin
Integrates Dependency-Check reports into SonarQube
Export Fortify vulnerability data to GitHub, GitLab, SonarQube and more
TCP/UDP Non-HTTP Proxy Extension (NoPE) for Burp Suite.
This repo contains the code for my appsec challenges
Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. Sugar-Free and Secure: no any external dependencies except for chart plotting are used
Continuation of the ZAP Neonmarker add-on previously by Juha Kivekäs
OWASP VulnerableApp Project: For Security Enthusiasts by Security Enthusiasts.
Lucy is a component analysis platform to minimize the risk of license infringements and to support and optimize the license compliance process.
The Faction Burp Suite Extension
A BurpSuite extension for vulnerability Scanning
Oversecured Vulnerable Android App
Add a description, image, and links to the appsec topic page so that developers can more easily learn about it.
To associate your repository with the appsec topic, visit your repo's landing page and select "manage topics."