davewichers

davewichers's Stars

• s0md3v/XSStrike

  Most advanced XSS scanner.

  Language:Python13.4k2742871.9k

• drwetter/testssl.sh

  Testing TLS/SSL encryption anywhere on any port

  Language:Shell8k1801.1k1k

• WebGoat/WebGoat

  WebGoat is a deliberately insecure application

  Language:JavaScript7.1k2107035.6k

• jeremylong/DependencyCheck

  OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.

  Language:Java6.5k1794.7k1.3k

• RetireJS/retire.js

  scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.

  Language:JavaScript3.7k83261419

• psiinon/open-source-web-scanners

  A list of open source web security scanners

  964252127

• gordonklaus/ineffassign

  Detect ineffectual assignments in Go code.

  Language:Go40256724

• zaproxy/zap-hud

  The ZAP Heads Up Display (HUD)

  Language:Java25317249152

• mozilla/eslint-plugin-no-unsanitized

  Custom ESLint rule to disallows unsafe innerHTML, outerHTML, insertAdjacentHTML and alike

  Language:JavaScript232911238

• h3xstream/burp-retire-js

  Burp/ZAP/Maven extension that integrate Retire.js repository to find vulnerable Javascript libraries.

  Language:JavaScript200224956

• rugged-software/rugged-software.github.io

  Are you rugged?

  8214214

• Contrast-Security-OSS/safelog4j

  Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning or upgrading

  Language:Java4113114

• vernjan/webgoat

  Selected solutions for OWASP WebGoat

  35016

• Contrast-Security-OSS/NodeTestBenches

  A collection of intentionally vulnerable test bench applications for testing the Contrast Security Node Agent.

  Language:JavaScript91136