OWASP-Benchmark / BenchmarkUtils
OWASP Benchmark Project Utilities - Provides scorecard generation and crawling tools for Benchmark style test suites.
☆18Updated last week
Alternatives and similar repositories for BenchmarkUtils:
Users that are interested in BenchmarkUtils are comparing it to the libraries listed below
- Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.1, purl, and vers…☆114Updated last week
- Autoconfigured ELK Stack That Contains All EPSS and NVD CVE Data☆50Updated 9 months ago
- Maturity Model Collaborative project☆15Updated 2 years ago
- ☆47Updated this week
- Global Security Database Tools☆42Updated last year
- With the hope that someone finds the data useful, we used to periodically publish an archive of almost all of the non-sensitive vulnerabi…☆93Updated 11 months ago
- CVSS v4.0 calculator☆29Updated 8 months ago
- Python wrapper for the API of cve-search☆120Updated last year
- Manager of third-party sources of Semgrep rules 🗂☆81Updated 9 months ago
- The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…☆142Updated last year
- A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.☆56Updated 7 months ago
- Tool to guess CPE name based on common software name☆93Updated 5 months ago
- Software Component Verification Standard (SCVS)☆144Updated 3 weeks ago
- CVSS v4.0 calculator☆38Updated last month
- A project to visualize the software supply chain☆50Updated last year
- A community collection of security reviews of open source software components.☆93Updated last year
- Python API library for DefectDojo☆41Updated 2 years ago
- OWASP Foundation Web Respository☆28Updated 8 months ago
- Docs: Vulnerability management aggregation of AppSec & OpSec (Tools Listing)☆30Updated 2 years ago
- ☆43Updated 2 years ago
- OWASP Foundation Web Respository☆31Updated 2 years ago
- DefectDojo Community Content☆18Updated 6 months ago
- Python API for vFeed Vulnerability & Threat Intelligence Database Enterprise & Pro Editions☆101Updated last year
- Documentation of Semgrep: a fast, open-source, static analysis tool.☆40Updated this week
- Tools for conducting analysis of CVE data in Elasticsearch☆74Updated 2 weeks ago
- ☆102Updated this week
- GitHub action to run Threagile, the agile threat modeling toolkit, on a repo's threagile.yaml file☆13Updated 11 months ago
- A collection of my Semgrep rules☆49Updated last year
- Externalize Java application access to protected resources as log messages.☆41Updated this week
- A collection of data fetchers, and simple quarterly and yearly CVE forecasting models.☆35Updated 3 months ago