OWASP Zed Attack Proxy (ZAP) is an easy-to-use integrated penetration testing tool for finding vulnerabilities in Web applications. It is designed to be used by people with a wide range of security experience and as such is ideal for developers and functional testers who are new to penetration testing as well as being a useful addition to an experienced pen tester's toolbox. ZAP provides automated scanners as well as a set of tools that allow you to find security vulnerabilities manually.
CRest (Client REST) is a lightweight library that simplifies the integration of third party RESTful services into Java applications. CRest is mainly annotation-driven, allowing the developer to focus on the essential aspects of the integration of a REST service, such as the definition of the Java interface that maps the remote REST methods and the data model the interface will deal with. The rest is achieved by annotating a plain Java interface with the relevant information such as the service end-point, the desired timeouts, URL formats, etc. CRest will handle everything else, including HTTP request generation, auto marshalling of the response, and more.
cmocka is a unit testing framework for C with mock objects. There are a variety of C unit testing frameworks available supporting different platforms and compilers. Some development requires a lot of different compilers and older versions, which makes it difficult to use unit testing frameworks. The idea of CMocka is that a test application only requires the standard C library and CMocka itself to minimize the conflicts with standard C library headers, especially on a lot of different platforms.
OpenLaszlo Schema Generator provides methods to enhance LZX-Markup from the OpenLaszlo RIA with full schema/namespace support and validation. You can run it from the command line or from inside your project using ANT. The JAR contains tasks to generate an XSD from your project LZX files; by doing that, you have full Schema Validation in Eclipse, and it will show you all your XML schema errors. The validation is aware of ALL tags and attributes: the LZX base components (+incubator) and your project specific code. Further, you get content-sensitive drop down menus for Tags and Attributes.
GA4PHP is a class for PHP that allows a coder to provide a method for allowing two-factor authentication for users. Primarily focused on the Google authenticator for iOS, Blackberry, and Android, the system can also support hardware and software tokens based on the TOTP and HOTP standards. The system is designed such that a programmer would simply extend the PHP class to provide storage for the token data.