The SpotBugs plugin for security audits of Java web applications. Find Security Bugs is the SpotBugs plugin for security audits of Java web applications. It can detect 141 different vulnerability types with over 823 unique API signatures. Cover popular frameworks including Spring-MVC, Struts, Tapestry and many more. Plugins are available for Eclipse, IntelliJ / Android Studio and NetBeans. Command line integration is available with Ant and Maven. Can be used with systems such as Jenkins and SonarQube. Extensive references are given for each bug patterns with references to OWASP Top 10 and CWE.

Features

  • 141 bug patterns
  • Support your frameworks and libraries
  • Integrate with your IDE
  • Continuous integration
  • OWASP TOP 10 and CWE coverage
  • The project is open-source and is open for contributions

Project Samples

OWASP Find Security Bugs Screenshot 1

Project Activity

See All Activity >

Categories

Security, Libraries

License

GNU Library or Lesser General Public License version 3.0 (LGPLv3)

Follow OWASP Find Security Bugs

OWASP Find Security Bugs Web Site

Other Useful Business Software
Stop Storing Third-Party Tokens in Your Database Icon
Stop Storing Third-Party Tokens in Your Database

Auth0 Token Vault handles secure token storage, exchange, and refresh for external providers so you don't have to build it yourself.

Rolling your own OAuth token storage can be a security liability. Token Vault securely stores access and refresh tokens from federated providers and handles exchange and renewal automatically. Connected accounts, refresh exchange, and privileged worker flows included.
Try Auth0 for Free
Rate This Project
Login To Rate This Project

User Reviews

Be the first to post a review of OWASP Find Security Bugs!

Additional Project Details

Programming Language

Java

Related Categories

Java Security Software, Java Libraries

Registered

2023-08-10
Report inappropriate content