Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.

Integrates Dependency-Check reports into SonarQube

Intentionally vulnerable Android application.

Too buggy web application

FOSSLight Hub : Integrated management web-service for Open Source Compliance Process

Jenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).

Test and monitor your projects for vulnerabilities with Maven. This plugin is officially maintained by Snyk.

Gradle plugin that scans the dependencies of a Gradle project using Sonatype platforms: OSS Index and Lifecycle.

Expolit Lists. 相关集合💥💥💥 ;) 用友NC反序列化/ CTF/ Java Deserialization/Shiro Vulns/ CNVD or CVE Vulns/ Log4j2/ Hikvision-decrypter...✨✨✨

EasyBuggy clone build on Spring Boot

Jenkins Plugin from Contrast Security

SSL/TLS vulnerability research

Analyzes your Java Maven Project dependencies for security issues and technical debts (CVE/EOL/+).

Майнд-карта для совместного структурирования проблем с безопасностью веб-приложений и подборки решений для них.

It is an application that can test three Android app vulnerabilities (user enumeration, routing detection bypass, and deep link) that have been issued in 2020. The app has a built-in flag value like CTF. Find flags and try authenticating on MainActivity! You can proceed with vulnerability analysis using the android_issue_2020.apk file. If you wa…

Gathers, enriches and publishes vulnerability information to a Kafka topic.

🐛🗡️👩‍⚕️ eir is a tool to report system vulnerabilities 👩‍⚕️🗡️🐛

Confuzzion is a Java Virtual Machine (JVM) fuzzer generating Java programs to find bugs and vulnerabilities in the Java VM.

Bitsea part of the Occtet Toolchain

Analyse Open Source dependencies in projects development. Aplication to analyse security and license aspects in Open Source project's dependencies, applicable to Java platform.