Giters
Jeff Williams (planetlevel)

planetlevel

Geek Repo

43

followers

5

following

21

stars

Company:Contrast Security

Location:Baltimore, MD

Home Page:http://contrastsecurity.com

Twitter:@planetlevel

Github PK Tool:Github PK Tool

Jeff Williams's starred repositories

BenchmarkJava

OWASP Benchmark is a test suite designed to verify the speed and accuracy of software vulnerability detection tools. A fully runnable web app written in Java, it supports analysis by Static (SAST), Dynamic (DAST), and Runtime (IAST) tools that support Java. The idea is that since it is fully runnable and all the vulnerabilities are actually exploitable, it’s a fair test for any kind of vulnerability detection tool. For more details on this project, please see the OWASP Benchmark Project home page.

Language:JavaLicense:GPL-2.0Stargazers:667Issues:57Issues:94

www-project-top-10-for-large-language-model-applications

OWASP Foundation Web Respository

Language:TeXLicense:NOASSERTIONStargazers:547Issues:85Issues:107

esapi-java

Language:JavaLicense:BSD-3-ClauseStargazers:323Issues:48Issues:15

jbom

Language:JavaLicense:Apache-2.0Stargazers:111Issues:11Issues:13

contrast-rO0

A tiny Java agent that blocks attacks against unsafe deserialization

Language:JavaLicense:BSD-3-ClauseStargazers:82Issues:12Issues:2

jot

Java Observability Toolkit

Language:JavaLicense:Apache-2.0Stargazers:61Issues:9Issues:4

safelog4j

Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning or upgrading

Language:JavaLicense:Apache-2.0Stargazers:41Issues:13Issues:1

joogle

A static analysis API for finding deserialization attack gadgets

Language:JavaLicense:BSD-3-ClauseStargazers:38Issues:6Issues:0

jinfinity

An API for consuming all the memory of Java apps using deserialization

Language:JavaLicense:BSD-3-ClauseStargazers:28Issues:10Issues:1

contrastscan-action

Contrast Scan GitHub action

License:Apache-2.0Stargazers:19Issues:15Issues:1

contrast

CodeSec by Contrast - The fastest and most accurate SAST scanner. Scan code and serverless environments

Language:JavaScriptLicense:MITStargazers:19Issues:6Issues:1

sbom-comparator

Lockheed Martin developed utility to compare two CycloneDX SBOMs

Language:JavaLicense:NOASSERTIONStargazers:18Issues:4Issues:1

sheepdog

Language:JavaLicense:MITStargazers:16Issues:35Issues:6

docs

Language:GroovyLicense:NOASSERTIONStargazers:15Issues:37Issues:35

contrast-sca-action

Contrast SCA GitHub Action

License:Apache-2.0Stargazers:10Issues:7Issues:2

meow

Language:HTMLStargazers:5Issues:43Issues:0

integration-eks-github-action

A github action that builds, deploys, and instruments a Contrast Security Agent with an application via Amazon Elastic Kubernetes Service.

Language:ShellStargazers:4Issues:7Issues:0

integration-aks-github-action

A github action that builds, deploys, and instruments a Contrast Security Agent with an application via Azure Kubernetes Service.

Language:ShellStargazers:3Issues:8Issues:0

integration-azure-spring-cloud-github-action

A github action that deploys and instruments a Contrast Security Agent with an application via Azure Spring Cloud.

Language:ShellStargazers:3Issues:8Issues:0

integration-verify-github-action

GitHub Action to verify an application by determining whether the application violates a job outcome policy or threshold of open vulnerabilities

Language:PythonLicense:MITStargazers:3Issues:7Issues:2

spring-petclinic

Spring PetClinic modified to include vulnerabilities for the purpose of demonstrating the power of IAST and RASP.

Language:JavaStargazers:1Issues:3Issues:0