Project Group: org.owasp

Dependency-Check Core

org.owasp : dependency-check-core

dependency-check-core is the engine and reporting tool used to identify and report if there are any known, publicly disclosed vulnerabilities in the scanned project's dependencies. The engine extracts meta-data from the dependencies and uses this to do fuzzy key-word matching against the Common Platfrom Enumeration (CPE), if any CPE identifiers are found the associated Common Vulnerability and Exposure (CVE) entries are added to the generated report.

Last Version: 7.1.1

Release Date:

Dependency-Check Utils

org.owasp : dependency-check-utils

dependency-check-utils is a collection of common utility classes used within dependency-check that might be useful in other projects.

Last Version: 7.1.1

Release Date:

Dependency-Check Maven Plugin

org.owasp : dependency-check-maven

dependency-check-maven is a Maven Plugin that uses dependency-check-core to detect publicly disclosed vulnerabilities associated with the project's dependencies. The plugin will generate a report listing the dependency, any identified Common Platform Enumeration (CPE) identifiers, and the associated Common Vulnerability and Exposure (CVE) entries.

Last Version: 7.1.1

Release Date:

dependency-check-gradle

org.owasp : dependency-check-gradle

OWASP dependency-check gradle plugin is a software composition analysis tool used to find known vulnerable dependencies.

Last Version: 7.1.1

Release Date:

Dependency-Check

org.owasp : dependency-check-parent

dependency-check is a utility that identifies project dependencies and checks if there are any known, publicly disclosed vulnerabilities. This tool can be part of the solution to the OWASP Top 10 2013: A9 - Using Components with Known Vulnerabilities.

Last Version: 7.1.1

Release Date:

Dependency-Check Ant Task

org.owasp : dependency-check-ant

dependency-check-ant is an Ant Task that uses dependency-check-core to detect publicly disclosed vulnerabilities associated with the project's dependencies. The task will generate a report listing the dependency, any identified Common Platform Enumeration (CPE) identifiers, and the associated Common Vulnerability and Exposure (CVE) entries.

Last Version: 7.1.1

Release Date:

Dependency-Check Plugin Archetype

org.owasp : dependency-check-plugin

dependency-check is a utility that identifies project dependencies and checks if there are any known, publicly disclosed vulnerabilities. This tool can be part of the solution to the OWASP Top 10 2013: A9 - Using Components with Known Vulnerabilities.

Last Version: 7.1.1

Release Date:

Dependency-Check Command Line

org.owasp : dependency-check-cli

dependency-check-cli is an command line tool that uses dependency-check-core to detect publicly disclosed vulnerabilities associated with the scanned project dependencies. The tool will generate a report listing the dependency, any identified Common Platform Enumeration (CPE) identifiers, and the associated Common Vulnerability and Exposure (CVE) entries.

Last Version: 7.1.1

Release Date:

OWASP CSRFGuard

org.owasp : csrfguard

OWASP CSRFGuard is a library that implements a variant of the synchronizer token pattern to mitigate the risk of Cross-Site Request Forgery (CSRF) attacks.

Last Version: 4.1.4

Release Date:

OWASP CSRFGuard Session extension

org.owasp : csrfguard-extension-session

Provides support for stateful, HTTP session based integrator applications

Last Version: 4.1.4

Release Date:

Last Version: 4.1.4

Release Date:

OWASP CSRFGuard Parent POM

org.owasp : csrfguard-parent

OWASP CSRFGuard is a library that implements a variant of the synchronizer token pattern to mitigate the risk of Cross-Site Request Forgery (CSRF) attacks.

Last Version: 4.1.4

Release Date:

OWASP CSRFGuard Extensions Parent POM

org.owasp : csrfguard-extensions

Extension modules that might be required, depending on whether the architecture of the integrator application is stateful or stateless.

Last Version: 4.1.4

Release Date:

OWASP CSRFGuard Test Parent POM

org.owasp : csrfguard-test

OWASP CSRFGuard is a library that implements a variant of the synchronizer token pattern to mitigate the risk of Cross-Site Request Forgery (CSRF) attacks.

Last Version: 4.1.4

Release Date:

OWASP CSRFGuard JSP Test WebApp

org.owasp : csrfguard-test-jsp

OWASP CSRFGuard is a library that implements a variant of the synchronizer token pattern to mitigate the risk of Cross-Site Request Forgery (CSRF) attacks.

Last Version: 4.1.4

Release Date:

OWASP Security Logging Logback

org.owasp : security-logging-logback

The OWASP Security Logging project provides developers and ops personnel with APIs for logging security-related events.

Last Version: 1.1.7

Release Date:

OWASP Security Logging Common

org.owasp : security-logging-common

The OWASP Security Logging project provides developers and ops personnel with APIs for logging security-related events.

Last Version: 1.1.7

Release Date:

OWASP Security Logging Log4j

org.owasp : security-logging-log4j

The OWASP Security Logging project provides developers and ops personnel with APIs for logging security-related events.

Last Version: 1.1.7

Release Date:

OWASP Security Logging

org.owasp : security-logging

The OWASP Security Logging project provides developers and ops personnel with APIs for logging security-related events.

Last Version: 1.1.7

Release Date:

OWASP Application Gateway

org.owasp : oag

An elephant strong web application gateway that handles oauth2 authentication and session management.

Last Version: 0.5.0

Release Date:

url-classifier

org.owasp : url

Declarative syntax for defining sets of URLs. No need for error-prone regexs.

Last Version: 1.2.4

Release Date:

OWASP Java File IO

org.owasp : java-file-io

The OWASP Java File I/O Security Project provides an easy to use library for validating and sanitizing filenames, directory paths, and uploaded files.

Last Version: 1.0.0

Release Date:

OWASP AntiSamy

org.owasp : antisamy

The OWASP AntiSamy project is a collection of APIs for safely allowing users to supply their own HTML and CSS without exposing the site to XSS vulnerabilities.

Last Version: 1.4

Release Date:

OWASP AntiSamy Sample Configs

org.owasp : antisamy-sample-configs

The OWASP AntiSamy project is a collection of APIs for safely allowing users to supply their own HTML and CSS without exposing the site to XSS vulnerabilities.

Last Version: 1.4

Release Date:

OWASP AntiSamy Project

org.owasp : antisamy-project

The OWASP AntiSamy project is a collection of APIs for safely allowing users to supply their own HTML and CSS without exposing the site to XSS vulnerabilities.

Last Version: 1.4

Release Date:

OWASP AntiSamy Demo App

org.owasp : antisamy-demo

The OWASP AntiSamy project is a collection of APIs for safely allowing users to supply their own HTML and CSS without exposing the site to XSS vulnerabilities.

Last Version: 1.4

Release Date:

  • 1