sbt-dependency-check
Vulnerability scanner
Automatically monitors dependencies for known vulnerabilities and generates reports on security issues
SBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). 
266 stars
11 watching
35 forks
Language: Scala
last commit: 3 months ago appseccvedevopsdevsecopsinfosecnvdowaspowasp-dependencychecksbtsbt-pluginscalasecuritysecurity-auditsecurity-automationsoftware-composition-analysissoftware-securitystatic-analysisvulnerabilitiesvulnerability-scanners
Related projects:
| Repository | Description | Stars |
|---|---|---|
 1n3/blackwidow | A Python-based web application scanner that gathers OSINT and fuzz data to identify OWASP vulnerabilities on target websites. | 1,531 |
 moduscreateorg/beep | An account security scanner that detects vulnerabilities in online accounts by hashing credentials and checking against data breaches. | 157 |
 trailofbits/it-depends | Automatically builds dependency graphs and Software Bills of Materials for packages and source code repositories. | 331 |
 sectooladdict/wavsep | An open-source tool for evaluating web application vulnerabilities by analyzing the separation of concerns in web applications. | 228 |
 sonatype-nexus-community/audit.net | Identifies security vulnerabilities in .NET NuGet dependencies during software development and maintenance | 55 |
 owasp/joomscan | Automated vulnerability scanner for Joomla CMS deployments to identify potential security issues. | 1,078 |
 baalmor/cve-ape | Automates CVE vulnerability scanning for Linux packages | 4 |
 cve-search/git-vuln-finder | Automates CVE vulnerability detection from Git commit messages | 397 |
 pyupio/safety | Detects known security vulnerabilities in Python dependencies and provides recommendations for remediation. | 1,731 |
 hasecuritysolutions/vulnwhisperer | An aggregator tool for vulnerability scan reports from various scanners | 1,357 |
 albinowax/activescanplusplus | A plugin for Burp Suite that extends its scanning capabilities to detect various application vulnerabilities and issues. | 586 |
 secdec/attack-surface-detector-burp | Identifies web app endpoints and parameters to help detect vulnerabilities | 98 |
| sonatype-nexus-community/auditjs | Tools to scan npm packages for known vulnerabilities and outdated dependencies. | 223 |
 mbalabash/sdc-check | An audit tool to identify potential security risks in dependencies | 139 |
 belane/linux-soft-exploit-suggester | A script to identify vulnerabilities in software packages on Linux systems | 222 |