Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.

Integrates Dependency-Check reports into SonarQube

Too buggy web application

Intentionally vulnerable Android application.

FOSSLight Hub : Integrated management web-service for Open Source Compliance Process

Jenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).

Test and monitor your projects for vulnerabilities with Maven. This plugin is officially maintained by Snyk.

Gradle plugin that scans the dependencies of a Gradle project using Sonatype platforms: OSS Index and Lifecycle.

Expolit Lists. 相关集合💥💥💥 ;) 用友NC反序列化/ CTF/ Java Deserialization/Shiro Vulns/ CNVD or CVE Vulns/ Log4j2/ Hikvision-decrypter...✨✨✨

Jenkins Plugin from Contrast Security

SSL/TLS vulnerability research

Майнд-карта для совместного структурирования проблем с безопасностью веб-приложений и подборки решений для них.

Analyzes your Java Maven Project dependencies for security issues and technical debts (CVE/EOL/+).

It is an application that can test three Android app vulnerabilities (user enumeration, routing detection bypass, and deep link) that have been issued in 2020. The app has a built-in flag value like CTF. Find flags and try authenticating on MainActivity! You can proceed with vulnerability analysis using the android_issue_2020.apk file. If you wa…

Gathers, enriches and publishes vulnerability information to a Kafka topic.

🐛🗡️👩‍⚕️ eir is a tool to report system vulnerabilities 👩‍⚕️🗡️🐛

Confuzzion is a Java Virtual Machine (JVM) fuzzer generating Java programs to find bugs and vulnerabilities in the Java VM.

Analyse Open Source dependencies in projects development. Aplication to analyse security and license aspects in Open Source project's dependencies, applicable to Java platform.

A Jenkins plugin by Red Hat, to scan the dependency stack and give information related to vulnerabilities, popularity, maintainability, compatibility and more

APIs for query CentOS vulnerabilities.