LLNL / Surfactant

Related projects ⓘ

Alternatives and complementary repositories for Surfactant

• KaanSK / go-epss
  A Golang library for interacting with the EPSS (Exploit Prediction Scoring System).
  ☆27Updated 8 months ago
• ortegaalfredo / autokaker
  Automated vulnerability discovery and annotation
  ☆62Updated 3 months ago
• JosephTLucas / lintML
  A security-first linter for code that shouldn't need linting
  ☆16Updated last year
• ossf / security-reviews
  A community collection of security reviews of open source software components.
  ☆92Updated 8 months ago
• rusakovichma / TicTaaC
  Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …
  ☆55Updated 4 months ago
• DefectDojo / Community-Contribs
  DefectDojo Community Content
  ☆17Updated last month
• CloudSecurityAlliance / gsd-tools
  Global Security Database Tools
  ☆41Updated 11 months ago
• CERTCC / VINCE
  VINCE is the Vulnerability Information and Coordination Environment developed and used by the CERT Coordination Center to improve coordin…
  ☆59Updated 3 weeks ago
• avogabos / ai_security_starterkit
  ☆74Updated last week
• wiz-sec-public / peach-framework
  PEACH - a step-by-step framework for modeling and improving SaaS and PaaS tenant isolation, by managing the attack surface exposed by use…
  ☆65Updated last year
• Nextdoor / cspm_evaluation_matrix
  Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix
  ☆58Updated last year
• n0jam / gcp-ctf-workshop
  ☆29Updated last month
• controlplaneio / truffleproc
  truffleproc — hunt secrets in process memory (TruffleHog & gdb mashup)
  ☆110Updated last year
• chainguard-dev / bom-shelter
  A place to systematically store software bill of materials (SBOM) documents.
  ☆44Updated last year
• swimlane / pyattck-data
  This repository contains generated contextual data utilized by pyattck.
  ☆17Updated 4 months ago
• latiotech / insecure-kubernetes-deployments
  A full insecure kubernetes application for testing security tools
  ☆54Updated this week
• elementsinteractive / twyn
  Security tool against dependency typosquatting attacks
  ☆35Updated this week
• franksec42 / Vulnerability-management-maturity
  Maturity Model Collaborative project
  ☆14Updated last year
• cve-search / vulnerability-lookup
  Vulnerability Lookup facilitates quick correlation of vulnerabilities from various sources, independent of vulnerability IDs, and streaml…
  ☆136Updated this week
• hashlookup / hashlookup-forensic-analyser
  Analyse a forensic target (such as a directory) to find and report files found and not found from CIRCL hashlookup public service - https…
  ☆125Updated last year
• chainguard-dev / self-attestation
  Markdown Version of the DHS/CISA Secure Software Development Self Attestation Form.
  ☆21Updated last year
• silascutler / dockerhoneypot-logs
  Collection of Docker honeypot logs from 2021 - 2024
  ☆35Updated last month
• jgamblin / patchthisapp
  Code and Website For PatchThis.app
  ☆28Updated this week
• DataDog / workload-security-evaluator
  Tooling to simulate runtime attacks and test default runtime detections from Datadog Cloud Security Management.
  ☆30Updated last month
• referefref / sinon
  Automation tool for Windows Deception Host Burn-In
  ☆76Updated 4 months ago
• jgamblin / CVElk
  Autoconfigured ELK Stack That Contains All EPSS and NVD CVE Data
  ☆47Updated 4 months ago
• referefref / gitdoorcheck
  Static code analyser for backdoors and malicious code in git repos using OpenAI compatible LLM APIs
  ☆69Updated 8 months ago
• trailofbits / testing-handbook
  Trail of Bits Testing Handbook
  ☆58Updated last month
• hashicorp-forge / semgrep-rules
  HashiCorp-relevant rules for the Semgrep code analysis tool
  ☆37Updated last year
• offensive-actions / azure-storage-reverse-shell
  This GitHub Action sends a reverse shell from a runner via Azure Storage Account blobs
  ☆36Updated last month