Select a tag to browse associated projects and drill deeper into the tag cloud.
OWASP Java HTML Sanitizer
Claimed by Open Web Application Securi... Analyzed about 21 hours ago
The OWASP HTML Sanitizer is a fast and easy to configure HTML Sanitizer written in Java which lets you include HTML authored by third-parties in your web application while protecting against XSS. The existing dependencies are on guava and JSR 305. The other jars are only needed by the test suite.
Licenses:
apache_2, bsd_ish
NextTypes
N
Analyzed about 5 hours ago
NextTypes is a standards based information storage, processing and transmission system that integrates the characteristics of other systems such as databases, programming languages, communication protocols, file systems, document managers, operating systems, frameworks, file formats and hardware in
Licenses:
apache_2
HDIV
H
Analyzed 1 day ago
Java Web Application Security Framework to solve web application vulnerabilities
HDIV extends web applications’ behaviour by adding Security functionalities, maintaining the API and the framework specification. This implies that we can use HDIV in applications developed in Struts 1.x, Struts 2.x
Licenses:
No declared licenses
Vega
V
Analyzed about 9 hours ago
Vega is an open source platform to test the security of web applications. Vega can help you find and validate SQL Injections, Cross-Site Scripting (XSS), inadvertently disclosed sensitive information, and other vulnerabilities. It is written in Java, GUI based, and runs on Linux, OS X, and Windows.
Licenses:
BSD-2-Clause, eclipse
find-sec-bugs
Analyzed about 3 hours ago
Plugin for FindBugs that aim to help security audit on Java web application.
Licenses:
No declared licenses
OWASP Xenotix XSS Exploit Framework
Claimed by Open Web Application Securi... Analyzed about 23 hours ago
OWASP Xenotix XSS Exploit Framework is an advanced Cross Site Scripting (XSS) vulnerability detection and exploitation framework. It provides Zero False Positive scan results with its unique Triple Browser Engine (Trident, WebKit, and Gecko) embedded scanner. It is claimed to have the world’s 2nd
Licenses:
apache_2
DevGuide
D
Claimed by Open Web Application Securi... Analyzed about 6 hours ago
The OWASP Guide is for architects and developers to securely engineer applications, primarily focusing on modern web apps and mobile applications.
We are in the process of a massive re-write and are looking for contributors. Please come and help!
Licenses:
CC_Attrib...
OWASP Java Encoder Project
Analyzed about 13 hours ago
Contextual Output Encoding is a computer programming technique necessary to stop Cross Site Scripting. This project is a Java 1.5+ simple-to-use drop-in high-performance encoder class with no dependencies and little baggage. It provides numerous encoding functions to help defend against XSS in a
Licenses:
No declared licenses
OWASP phpsec
O
Claimed by Open Web Application Securi... Analyzed about 16 hours ago
OWASP PHP Security Project
OWASP PHP Security Project is an effort by a group of PHP developers in securing PHP web applications, using a collection of decoupled flexible secure PHP libraries, as well as a collection of PHP tools.
Licenses:
creativec...
OWASP WebGoatPHP
Claimed by Open Web Application Securi... Analyzed 1 day ago
WebGoatPHP is a deliberately insecure web application developed using PHP to teach web application security. It offers a set of challenges based on various vulnerabilities listed in OWASP. The application is a realistic teaching environment and supports four different modes.
Wiki Page: https://www.owasp.org/index.php/WebGoatPHP
Licenses:
apache_2