OWASP-Benchmark / BenchmarkUtils

Related projects: ⓘ

• FIRSTdotorg / cvss-v4-calculator
  CVSS v4.0 calculator
  ☆21Updated last month
• jgamblin / CVElk
  Autoconfigured ELK Stack That Contains All EPSS and NVD CVE Data
  ☆45Updated 2 months ago
• kerberosmansour / InfoSecOpenAIExamples
  InfoSec OpenAI Examples
  ☆19Updated 9 months ago
• franksec42 / Vulnerability-management-maturity
  Maturity Model Collaborative project
  ☆13Updated last year
• akamai / luda
  Malicious actors often reuse code to deploy their malware, phishing website or CNC server. As a result, similiaries can be found on URLs …
  ☆74Updated 10 months ago
• kempy007 / VulManAgg
  Docs: Vulnerability management aggregation of AppSec & OpSec (Tools Listing)
  ☆30Updated last year
• RedHatProductSecurity / cvss-v4-calculator
  CVSS v4.0 calculator
  ☆34Updated last week
• DefectDojo / Community-Contribs
  DefectDojo Community Content
  ☆17Updated 5 months ago
• OWASP / threat-dragon-core
  OWASP Threat Dragon core files
  ☆28Updated 3 years ago
• DefectDojo / defectdojo_api
  Python API library for DefectDojo
  ☆40Updated last year
• FIRSTdotorg / Vuln4Cast
  A collection of data fetchers, and simple quarterly and yearly CVE forecasting models.
  ☆30Updated 11 months ago
• OWASP / www-project-vulnerability-management-guide
  OWASP Foundation Web Respository
  ☆26Updated last year
• OWASP / cwe-tool
  A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.
  ☆54Updated 2 weeks ago
• ossf / security-reviews
  A community collection of security reviews of open source software components.
  ☆92Updated 6 months ago
• DevSlop / pixi-crs
  CI Pipeline with Pixi, the WAF OWASP Core Rule Set and TestCafe tests.
  ☆15Updated 3 years ago
• CERTCC / VINCE
  VINCE is the Vulnerability Information and Coordination Environment developed and used by the CERT Coordination Center to improve coordin…
  ☆53Updated 2 weeks ago
• semgrep-old / rules-owasp-asvs
  Semgrep rules corresponding to the OWASP ASVS standard
  ☆27Updated 3 years ago
• Threagile / run-threagile-action
  GitHub action to run Threagile, the agile threat modeling toolkit, on a repo's threagile.yaml file
  ☆13Updated 4 months ago
• vuldb / vuldb-api-python-examples
  VulDB Python scripts to fetch data via API
  ☆19Updated 4 years ago
• semgrep / semgrep-docs
  Documentation of Semgrep: a fast, open-source, static analysis tool.
  ☆37Updated this week
• stacscan / stacs
  Static Token And Credential Scanner
  ☆94Updated last year
• rusakovichma / TicTaaC
  Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …
  ☆54Updated 2 months ago
• pbom-dev / OSCAR
  A comprehensive, systematic and actionable way to understand attacker behaviors and techniques with respect to the software supply chain
  ☆85Updated 7 months ago
• t0sche / cvss-bt
  Enriching the NVD CVSS scores to include Temporal & Threat Metrics
  ☆56Updated this week
• OVAL-Community / OVAL
  Official repository for the Open Vulnerability and Assessment Language
  ☆33Updated 4 months ago
• mitre / engage
  MITRE Engage™ is a framework for conducting Denial, Deception, and Adversary Engagements.
  ☆59Updated 5 months ago
• righettod / log4shell-analysis
  Contains all my research and content produced regarding the log4shell vulnerability
  ☆32Updated 2 years ago
• jgamblin / monthlyCVEStats
  Monthly CVE Stats
  ☆33Updated 2 weeks ago
• sec-mirror / cis-benchmarks
  Mirror - CIS Benchamarks
  ☆37Updated 3 years ago
• tuannq2299 / semgrep-rules
  A collection of Semgrep rules which followed security guidelines for .NET and Java.
  ☆12Updated 2 years ago