• Stars
    star
    3
  • Rank 3,963,521 (Top 79 %)
  • Language
    Python
  • License
    MIT License
  • Created almost 3 years ago
  • Updated 4 months ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

GitHub Action to verify an application by determining whether the application violates a job outcome policy or threshold of open vulnerabilities

More Repositories

1

cassandra-migration

Database migration (evolution) tool for Apache Cassandra
Java
105
star
2

contrast-rO0

A tiny Java agent that blocks attacks against unsafe deserialization
Java
79
star
3

DjanGoat

Python and Django implementation of the OWASP RailsGoat project
Python
68
star
4

safelog4j

Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning or upgrading
Java
41
star
5

joogle

A static analysis API for finding deserialization attack gadgets
Java
36
star
6

go-test-bench

Intentionally vulnerable Go web app.
Go
35
star
7

jinfinity

An API for consuming all the memory of Java apps using deserialization
Java
28
star
8

java-sarif

POJOs generated from the Static Analysis Results Interchange Format (SARIF) JSON schema.
Java
19
star
9

contrastscan-action

Contrast Scan GitHub action
Shell
19
star
10

sheepdog

Java
16
star
11

agent-operator

A K8s operator to inject agents into existing K8s workloads.
C#
15
star
12

vulnpy

Purposely-vulnerable Python functions
Python
15
star
13

docs

Groovy
15
star
14

NodeTestBench

Intentionally Vulnerable Node Applications
JavaScript
15
star
15

vulnerable-spring-boot-application

Java
13
star
16

Burptrast

Burp Plugin for Contrast Security
Java
10
star
17

NodeTestBenches

A collection of intentionally vulnerable test bench applications for testing the Contrast Security Node Agent.
JavaScript
9
star
18

contrast-sdk-java

Java SDK for Contrast Security
Java
8
star
19

join-the-team

Information about working with the Contrast Engineering Team.
8
star
20

ticketbook

This is a purposely insecure web application.
Java
7
star
21

contrast-sca-action

Contrast SCA GitHub Action
7
star
22

demo-netflicks

C#
6
star
23

contrast-sdk-dotnet

.Net API for the Contrast REST API
C#
6
star
24

contrast-maven-plugin

Contrast Maven Plugin
Java
5
star
25

meow

HTML
5
star
26

java-microservice-sample-apps

A small microservice that demonstrating how Contrast works with microservices
Java
4
star
27

contrast-sdk-python

Python
4
star
28

serialbox

Java
4
star
29

integration-eks-github-action

A github action that builds, deploys, and instruments a Contrast Security Agent with an application via Amazon Elastic Kubernetes Service.
Shell
4
star
30

demo-terracotta-bank

Java
3
star
31

webgoat

JavaScript
3
star
32

ops-hire-project

Contrast Operations Hire Project
3
star
33

integration-azure-spring-cloud-github-action

A github action that deploys and instruments a Contrast Security Agent with an application via Azure Spring Cloud.
Shell
3
star
34

mysql-forensics-tool

Tool for generating MySQL forensics specifically for TeamServer.
PLpgSQL
3
star
35

integration-aks-github-action

A github action that builds, deploys, and instruments a Contrast Security Agent with an application via Azure Kubernetes Service.
Shell
3
star
36

contrast-dotnet-examples

Example code examples and scripts to complement documentation for Contrast .NET Agents
PowerShell
3
star
37

workshop

Contrast Security Workshop
Ruby
2
star
38

dotnet-dvnr

Standalone utility for collecting Windows IIS server information
C#
2
star
39

sdet-hire-project

A set of directions for SDET candidates to complete
2
star
40

contrast-chrome-extension

JavaScript
2
star
41

demo-petclinic

TypeScript
2
star
42

contrast-security-orb

Contrast Security Orb for CircleCI
2
star
43

KoaTestBench

Intentionally Vulnerable Koa Application
JavaScript
2
star
44

contrast-security-oss.github.io

HTML
2
star
45

log4shell_serverless

Exploit of the log4shell vulnerability in an AWS Lambda function
Java
2
star
46

demo-webgoat7

TypeScript
2
star
47

Google-Apps-Script

Google Apps Scripts for connecting TeamServer with Google Apps such as Sheets
2
star
48

react-test-bench

Intentionally vulnerable React web application for exercising vulnerability detection
JavaScript
2
star
49

AdminTool

Java
2
star
50

contrast-teamserver-api-docs

2
star
51

demo-webgoat.net

C#
2
star
52

ansible-packer-docker

Build an ansible-packer Docker container
Dockerfile
2
star
53

home-automation

Java
2
star
54

integrations-scw

Script to populate a Contrast environment with links to Secure Code Warrior videos and training exercises.
Python
2
star
55

contrast-integrations-cli

A CLI tool for adding Contrast Integrations via rule customizations.
Python
2
star
56

ContrastSplunkApp

Contrast Security App for Splunk
Python
2
star
57

contrastsecurity-node-docker-onboarding-guide-sample-project

This repo is a companion to the Contrast agent deployment in Docker - Node.js guide.
Shell
1
star
58

contrast-intellij-plugin

Java
1
star
59

maven-yarn-docker

Dockerfile which builds an image containing maven and yarn build tools
Dockerfile
1
star
60

contrast-scan-owasp-scorer

Java
1
star
61

vizt

A command line tool for visualizing Contrast trace XML exports.
Python
1
star
62

chef-contrast-java-agent

A Chef cookbook to install the contrast security java agent.
Ruby
1
star
63

proxy-agent-docker

Docker images for building, deploying, and testing Contrast proxy (WAF) agent
Dockerfile
1
star
64

vulneruby_engine

Ruby
1
star
65

contrast-sdk-javascript

JavaScript
1
star
66

attack-load-generator

Python
1
star
67

SailsTestBench

Intentionally Vulnerable Sails Applications
JavaScript
1
star
68

contrast-java-examples

Java
1
star
69

demo-nodegoat

HTML
1
star
70

demo-k8s-operator

HCL
1
star
71

contrast-sdk-ruby

Ruby
1
star
72

node-aws-docker

Docker image for building node projects and deploying to AWS Lambda
1
star
73

agent-teamserver-tests

Shell
1
star
74

contrast-gradle-plugin

Groovy
1
star
75

oapi-build-docker

Tools for building Open API specification projects in CI
Dockerfile
1
star
76

vulneruby

Ruby
1
star
77

spring-petclinic

A sample Spring-based application
Java
1
star
78

nginx-contrast-connector

readonly mirror of contrast nginx-contrast-connector repo.
C
1
star
79

azure-aks-example

C#
1
star
80

infrastructure-hire-project

HCL
1
star
81

eop-examples

Setting up EOP TeamServer on Various Platforms
Shell
1
star
82

ContrastDataDogDashboard

1
star
83

maven-cross-openjdk-docker

Dockerfile
1
star