Pinned Repositories
cassandra-migration
Database migration (evolution) tool for Apache Cassandra
contrast-rO0
A tiny Java agent that blocks attacks against unsafe deserialization
contrastscan-action
Contrast Scan GitHub action
DjanGoat
Python and Django implementation of the OWASP RailsGoat project
go-test-bench
Intentionally vulnerable Go web app.
java-sarif
POJOs generated from the Static Analysis Results Interchange Format (SARIF) JSON schema.
jinfinity
An API for consuming all the memory of Java apps using deserialization
joogle
A static analysis API for finding deserialization attack gadgets
safelog4j
Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning or upgrading
Spring-Kafka-POC-CVE-2023-34040
POC for Spring Kafka Deserialization Vulnerability CVE-2023-34040
Contrast Security OSS's Repositories
Contrast-Security-OSS/sheepdog
Contrast-Security-OSS/contrast-sdk-java
Java SDK for Contrast Security
Contrast-Security-OSS/join-the-team
Information about working with the Contrast Engineering Team.
Contrast-Security-OSS/contrast-maven-plugin
Contrast Maven Plugin
Contrast-Security-OSS/integration-eks-github-action
A github action that builds, deploys, and instruments a Contrast Security Agent with an application via Amazon Elastic Kubernetes Service.
Contrast-Security-OSS/integration-aks-github-action
A github action that builds, deploys, and instruments a Contrast Security Agent with an application via Azure Kubernetes Service.
Contrast-Security-OSS/integration-azure-spring-cloud-github-action
A github action that deploys and instruments a Contrast Security Agent with an application via Azure Spring Cloud.
Contrast-Security-OSS/contrast-security-oss.github.io
Contrast-Security-OSS/ContrastSplunkApp
Contrast Security App for Splunk
Contrast-Security-OSS/log4shell_serverless
Exploit of the log4shell vulnerability in an AWS Lambda function
Contrast-Security-OSS/bridgekeeper
Contrast-Security-OSS/contrast-gradle-plugin
Contrast-Security-OSS/contrast-scan-owasp-scorer
Contrast-Security-OSS/maven-yarn-docker
Dockerfile which builds an image containing maven and yarn build tools
Contrast-Security-OSS/stream
Stream is a generic implementation for concurrency communication patterns
Contrast-Security-OSS/contrast-eclipse-plugin
Contrast-Security-OSS/aks-github-action-demo
Contrast-Security-OSS/aws-codebuild-run-build
Run a AWS CodeBuild project as a step in a GitHub Actions workflow job.
Contrast-Security-OSS/CDK-SPA-Deploy
This is an AWS CDK Construct to make deploying a single page website (Angular/React/Vue) to AWS S3 behind SSL/Cloudfront easier
Contrast-Security-OSS/CVE-2021-44228
Professional Service scripts to aid in the identification of affected Java applications in TeamServer
Contrast-Security-OSS/github-actions
GitHub actions for Contrast Security
Contrast-Security-OSS/hammer
A utility application for load testing APIs
Contrast-Security-OSS/integrations-kenna-toolkit
Kenna Security API and Scripting Toolkit
Contrast-Security-OSS/java-buildpack
Cloud Foundry buildpack for running Java applications
Contrast-Security-OSS/juice-shop
OWASP Juice Shop: Probably the most modern and sophisticated insecure web application
Contrast-Security-OSS/node-heapdump
Make a dump of the V8 heap for later inspection. Ported to N-API.
Contrast-Security-OSS/openshift-s2i-example
Contrast-Security-OSS/paulc4-microservices-demo
Demo application to go with Blog on spring.io
Contrast-Security-OSS/starter-workflows
Accelerating new GitHub Actions workflows
Contrast-Security-OSS/workflow-dispatch
A GitHub Action for triggering workflows, using the `workflow_dispatch` event