• Stars
    star
    36
  • Rank 735,472 (Top 15 %)
  • Language
    Java
  • License
    BSD 3-Clause "New...
  • Created almost 9 years ago
  • Updated about 2 years ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

A static analysis API for finding deserialization attack gadgets

More Repositories

1

cassandra-migration

Database migration (evolution) tool for Apache Cassandra
Java
105
star
2

contrast-rO0

A tiny Java agent that blocks attacks against unsafe deserialization
Java
79
star
3

DjanGoat

Python and Django implementation of the OWASP RailsGoat project
Python
68
star
4

safelog4j

Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning or upgrading
Java
41
star
5

go-test-bench

Intentionally vulnerable Go web app.
Go
35
star
6

jinfinity

An API for consuming all the memory of Java apps using deserialization
Java
28
star
7

java-sarif

POJOs generated from the Static Analysis Results Interchange Format (SARIF) JSON schema.
Java
19
star
8

contrastscan-action

Contrast Scan GitHub action
Shell
19
star
9

sheepdog

Java
16
star
10

agent-operator

A K8s operator to inject agents into existing K8s workloads.
C#
15
star
11

vulnpy

Purposely-vulnerable Python functions
Python
15
star
12

docs

Groovy
15
star
13

NodeTestBench

Intentionally Vulnerable Node Applications
JavaScript
15
star
14

vulnerable-spring-boot-application

Java
13
star
15

Burptrast

Burp Plugin for Contrast Security
Java
10
star
16

NodeTestBenches

A collection of intentionally vulnerable test bench applications for testing the Contrast Security Node Agent.
JavaScript
9
star
17

contrast-sdk-java

Java SDK for Contrast Security
Java
8
star
18

join-the-team

Information about working with the Contrast Engineering Team.
8
star
19

ticketbook

This is a purposely insecure web application.
Java
7
star
20

contrast-sca-action

Contrast SCA GitHub Action
7
star
21

demo-netflicks

C#
6
star
22

contrast-sdk-dotnet

.Net API for the Contrast REST API
C#
6
star
23

contrast-maven-plugin

Contrast Maven Plugin
Java
5
star
24

meow

HTML
5
star
25

java-microservice-sample-apps

A small microservice that demonstrating how Contrast works with microservices
Java
4
star
26

contrast-sdk-python

Python
4
star
27

serialbox

Java
4
star
28

integration-eks-github-action

A github action that builds, deploys, and instruments a Contrast Security Agent with an application via Amazon Elastic Kubernetes Service.
Shell
4
star
29

demo-terracotta-bank

Java
3
star
30

webgoat

JavaScript
3
star
31

ops-hire-project

Contrast Operations Hire Project
3
star
32

integration-azure-spring-cloud-github-action

A github action that deploys and instruments a Contrast Security Agent with an application via Azure Spring Cloud.
Shell
3
star
33

mysql-forensics-tool

Tool for generating MySQL forensics specifically for TeamServer.
PLpgSQL
3
star
34

integration-verify-github-action

GitHub Action to verify an application by determining whether the application violates a job outcome policy or threshold of open vulnerabilities
Python
3
star
35

integration-aks-github-action

A github action that builds, deploys, and instruments a Contrast Security Agent with an application via Azure Kubernetes Service.
Shell
3
star
36

contrast-dotnet-examples

Example code examples and scripts to complement documentation for Contrast .NET Agents
PowerShell
3
star
37

workshop

Contrast Security Workshop
Ruby
2
star
38

dotnet-dvnr

Standalone utility for collecting Windows IIS server information
C#
2
star
39

sdet-hire-project

A set of directions for SDET candidates to complete
2
star
40

contrast-chrome-extension

JavaScript
2
star
41

demo-petclinic

TypeScript
2
star
42

contrast-security-orb

Contrast Security Orb for CircleCI
2
star
43

KoaTestBench

Intentionally Vulnerable Koa Application
JavaScript
2
star
44

contrast-security-oss.github.io

HTML
2
star
45

log4shell_serverless

Exploit of the log4shell vulnerability in an AWS Lambda function
Java
2
star
46

demo-webgoat7

TypeScript
2
star
47

Google-Apps-Script

Google Apps Scripts for connecting TeamServer with Google Apps such as Sheets
2
star
48

react-test-bench

Intentionally vulnerable React web application for exercising vulnerability detection
JavaScript
2
star
49

AdminTool

Java
2
star
50

contrast-teamserver-api-docs

2
star
51

demo-webgoat.net

C#
2
star
52

ansible-packer-docker

Build an ansible-packer Docker container
Dockerfile
2
star
53

home-automation

Java
2
star
54

integrations-scw

Script to populate a Contrast environment with links to Secure Code Warrior videos and training exercises.
Python
2
star
55

contrast-integrations-cli

A CLI tool for adding Contrast Integrations via rule customizations.
Python
2
star
56

ContrastSplunkApp

Contrast Security App for Splunk
Python
2
star
57

contrastsecurity-node-docker-onboarding-guide-sample-project

This repo is a companion to the Contrast agent deployment in Docker - Node.js guide.
Shell
1
star
58

contrast-intellij-plugin

Java
1
star
59

maven-yarn-docker

Dockerfile which builds an image containing maven and yarn build tools
Dockerfile
1
star
60

contrast-scan-owasp-scorer

Java
1
star
61

vizt

A command line tool for visualizing Contrast trace XML exports.
Python
1
star
62

chef-contrast-java-agent

A Chef cookbook to install the contrast security java agent.
Ruby
1
star
63

proxy-agent-docker

Docker images for building, deploying, and testing Contrast proxy (WAF) agent
Dockerfile
1
star
64

vulneruby_engine

Ruby
1
star
65

contrast-sdk-javascript

JavaScript
1
star
66

attack-load-generator

Python
1
star
67

SailsTestBench

Intentionally Vulnerable Sails Applications
JavaScript
1
star
68

contrast-java-examples

Java
1
star
69

demo-nodegoat

HTML
1
star
70

demo-k8s-operator

HCL
1
star
71

contrast-sdk-ruby

Ruby
1
star
72

node-aws-docker

Docker image for building node projects and deploying to AWS Lambda
1
star
73

agent-teamserver-tests

Shell
1
star
74

contrast-gradle-plugin

Groovy
1
star
75

oapi-build-docker

Tools for building Open API specification projects in CI
Dockerfile
1
star
76

vulneruby

Ruby
1
star
77

spring-petclinic

A sample Spring-based application
Java
1
star
78

nginx-contrast-connector

readonly mirror of contrast nginx-contrast-connector repo.
C
1
star
79

azure-aks-example

C#
1
star
80

infrastructure-hire-project

HCL
1
star
81

eop-examples

Setting up EOP TeamServer on Various Platforms
Shell
1
star
82

ContrastDataDogDashboard

1
star
83

maven-cross-openjdk-docker

Dockerfile
1
star