The ZAP core project
-
Updated
Jul 18, 2024 - Java
The ZAP core project
ZAP Add-ons
Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.
OWASP VulnerableApp Project: For Security Enthusiasts by Security Enthusiasts.
TCP/UDP Non-HTTP Proxy Extension (NoPE) for Burp Suite.
Oversecured Vulnerable Android App
Integrates Dependency-Check reports into SonarQube
Java web and command line applications demonstrating various security topics
A simple Java command-line utility to mirror the CVE JSON data from NIST.
Jenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).
SecHub provides a central API to test software with different security tools.
Vulnerable Client-Server Application (VuCSA) is made for learning how to perform penetration tests of non-http thick clients. It is written in Java (with JavaFX graphical user interface) and contains multiple challenges including SQL injection, RCE, XML vulnerabilities and more.
Main repository for the official Dependency-Track Jenkins plugin
A Java library for parsing and programmatically using threat models
Vendor-Neutral Security Tool Automation Controller (over REST)
Ziti SDK for JVM
This repo contains the code for my appsec challenges
Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. Sugar-Free and Secure: no any external dependencies except for chart plotting are used
This extension adds a search bar to the Repeater tab that can be used to highlight all repeater tabs where the request and/or response matches a query via simple text matching or Regex.
Add a description, image, and links to the appsec topic page so that developers can more easily learn about it.
To associate your repository with the appsec topic, visit your repo's landing page and select "manage topics."