NVD (National Vulnerability Database)
- This is list of all known vulnerabilities
CVE
- This is a number given to vulnerability and we can search vulnerabilities by technology/platform which we use
Vulnerability Sources
- Propietary Code
- Dependencies/libraries/frameworks your application is using
- Network
- Hardware
- Operating Systems.
- Container
OWASP
- Refer Here for the official website
- OWASP TOP 10 Refer Here
- OWASP API TOP 10 Refer Here
SCA (Software Composition Analysis)
- Try creating free trail account in fortify Refer Here
-
Open Source Codes which we will be scanning
- Openmrs (Java) Refer Here
- Mezzazine (Python) Refer Here
- Nop Commerce .net Refer Here