IQTLabs/software-supply-chain-compromises external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

IQTLabs/software-supply-chain-compromises

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/IQTLabs/software-supply-chain-compromises)

Close

IQTLabs / software-supply-chain-compromisesView on GitHubMore

• External links
• Readme badge

A dataset of software supply chain compromises. Please help us maintain it!

☆131Sep 16, 2022Updated 3 years ago

Alternatives and similar repositories for software-supply-chain-compromises

Users that are interested in software-supply-chain-compromises are comparing it to the libraries listed below

• vuduclyunitn / software_supply_chain_papers

  View on GitHub
  This repository contains a list of papers about software supply chain
  ☆29May 22, 2024Updated last year
• in-toto / supply-chain-compromises

  View on GitHub
  ☆22Nov 27, 2021Updated 4 years ago
• osssanitizer / maloss

  View on GitHub
  Towards Measuring Supply Chain Attacks on Package Managers for Interpreted Languages
  ☆136Oct 5, 2022Updated 3 years ago
• testifysec / go-ima

  View on GitHub
  go-ima is a tool that checks if a file has been tampered with. It is useful in ensuring integrity in CI systems
  ☆13Sep 28, 2023Updated 2 years ago
• lyvd / bad-snakes-icse23-artifacts

  View on GitHub
  The Artifacts for ICSE 2023 paper: Bad Snakes: Understanding and Improving Python Package Index Malware Scanning
  ☆13Feb 8, 2026Updated 3 weeks ago
• dekkagaijin / spiffe-sigstore-tutorial

  View on GitHub
  ☆11Nov 11, 2022Updated 3 years ago
• NJUJisq / DS_Python

  View on GitHub
  ☆11Aug 24, 2023Updated 2 years ago
• amzn / zeek-plugin-tds

  View on GitHub
  Zeek network security monitor plugin that enables parsing of the Tabular Data Stream (TDS) protocol
  ☆25May 30, 2024Updated last year
• cnabio / signy

  View on GitHub
  Go implementation for CNAB content trust verification using TUF, Notary, and in-toto
  ☆31Jul 5, 2023Updated 2 years ago
• CyCat-project / cycat-taxonomy

  View on GitHub
  CyCAT.org taxonomies
  ☆15May 22, 2021Updated 4 years ago
• codewhitesec / apollon

  View on GitHub
  Proof-of-Concept to evade auditd by writing /proc/PID/mem
  ☆24Aug 21, 2023Updated 2 years ago
• eanmeyer / SolarwindsVulnerablityInfo

  View on GitHub
  Repository with all the Solarwinds Vulnerability information I've been tracking and using for communications, review, and technical under…
  ☆25Dec 19, 2020Updated 5 years ago
• ossf / wg-vulnerability-disclosures

  View on GitHub
  The OpenSSF Vulnerability Disclosures Working Group seeks to help improve the overall security of the open source software ecosystem by h…
  ☆213Feb 4, 2026Updated last month
• PaloAltoNetworks / github-oidc-utils

  View on GitHub
  ☆36Apr 29, 2025Updated 10 months ago
• bambenek / research

  View on GitHub
  ☆100Dec 21, 2020Updated 5 years ago
• ace-ecosystem / yara_scanner

  View on GitHub
  A Python wrapper library for libyara and a local server for fully utilizing the CPUs of the system to scan with yara...with additional ca…
  ☆19Dec 8, 2022Updated 3 years ago
• amzn / zeek-plugin-profinet

  View on GitHub
  Zeek network security monitor plugin that enables parsing of the Profinet protocol
  ☆31May 30, 2024Updated last year
• stytchauth / samlshield

  View on GitHub
  SAML Shield is an open-source Node.js library that proactively validates and rejects malicious SAML assertions at the protocol level, pro…
  ☆54Feb 6, 2026Updated last month
• sundruid / muonfp

  View on GitHub
  MuonFP is an enterprise ready, TCP passive fingerprinter written in Rust that has no external dependencies such as WireShark or other ope…
  ☆29Dec 12, 2025Updated 2 months ago
• cydea / threat-personas

  View on GitHub
  We borrow the concept of 'personas' from UX/service design and apply it to threat actors to improve understanding between security, techn…
  ☆11Jun 17, 2020Updated 5 years ago
• amzn / zeek-plugin-s7comm

  View on GitHub
  Zeek network security monitor plugin that enables parsing of the S7 protocol
  ☆41May 30, 2024Updated last year
• rpetrich / deciduous

  View on GitHub
  App that simplifies building decision trees to model adverse scenarios
  ☆228Jul 11, 2024Updated last year
• nxenon / grpc-lab

  View on GitHub
  gRPC / gRPC-Web Pentest Practicing Lab
  ☆10Aug 29, 2023Updated 2 years ago
• doyensec / cloudsec-tidbits

  View on GitHub
  Blogpost series showcasing interesting cloud - web app security bugs
  ☆48Jun 13, 2023Updated 2 years ago
• chainguard-dev / terraform-provider-oci

  View on GitHub
  Terraform provider to perform OCI image operations
  ☆15Updated this week
• kudelskisecurity / ecdsa-dump-tls

  View on GitHub
  ☆12Feb 24, 2023Updated 3 years ago
• philips-labs / fatt

  View on GitHub
  fatt tries to find any purl in your project by looking at predefined fields in the supported packages. These fields describe using a purl…
  ☆11Jan 26, 2026Updated last month
• lukehinds / policy-controller-demo

  View on GitHub
  demo of keyless signing with the sigstore kubernetes policy controller
  ☆11Sep 7, 2022Updated 3 years ago
• D4-project / IPASN-History

  View on GitHub
  IP ASN History to find ASN announcing an IP and the closest prefix announcing it at a specific date
  ☆97Jan 8, 2026Updated last month
• raesene / teisteanas

  View on GitHub
  ☆29May 12, 2025Updated 9 months ago
• githubnext / amalfi-artifact

  View on GitHub
  Artifact accompanying our ICSE '22 paper "Practical Automated Detection of Malicious npm Packages"
  ☆47Jan 25, 2022Updated 4 years ago
• ancat / egrets

  View on GitHub
  egrets monitors egress
  ☆47Apr 12, 2020Updated 5 years ago
• lyvd / bandit4mal

  View on GitHub
  A fork of Bandit tool with patterns to identifying malicious python code.
  ☆29Sep 1, 2022Updated 3 years ago
• 3c7 / infrastructure-tracking-schema

  View on GitHub
  ☆24Sep 28, 2022Updated 3 years ago
• dougiep16 / actortrackr

  View on GitHub
  Home to the ActorTrackr source code
  ☆24Jun 21, 2017Updated 8 years ago
• in-toto / specification

  View on GitHub
  Specification and other related documents.
  ☆50Jan 13, 2025Updated last year
• kinvolk / seccompagent

  View on GitHub
  agent for handling seccomp descriptors for container runtimes
  ☆47Feb 1, 2024Updated 2 years ago
• blues-lab / totp-app-analysis-public

  View on GitHub
  Security and Privacy Failures in Popular 2FA Apps
  ☆20Oct 5, 2023Updated 2 years ago
• testifysec / witness-examples

  View on GitHub
  Witness Examples
  ☆12Feb 27, 2024Updated 2 years ago