OWASP / cwe-toolLinks
A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.
☆57Updated last month
Alternatives and similar repositories for cwe-tool
Users that are interested in cwe-tool are comparing it to the libraries listed below
Sorting:
- A Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC☆32Updated 6 months ago
- A community collection of security reviews of open source software components.☆95Updated last year
- Mitigate security concerns of Dependency Confusion supply chain security risks☆48Updated 2 weeks ago
- The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…☆148Updated last year
- The Open Security Summit is focused on the collaboration between, Developers and Application Security☆45Updated this week
- ☆116Updated this week
- A curated list of security tools for Hackers & Builders!☆100Updated 11 months ago
- Dependency Combobulator☆93Updated last year
- OWASP Foundation Web Respository☆28Updated 10 months ago
- A MAL language that demonstrates the Maven project structure☆23Updated 3 years ago
- Software Component Verification Standard (SCVS)☆148Updated 3 months ago
- StartLeft is an automation tool for generating Threat Models written in the Open Threat Model (OTM) format from a variety of different so…☆51Updated this week
- ☆35Updated 4 years ago
- Vulnogram is a tool for creating and editing CVE information in CVE JSON format☆195Updated 2 months ago
- CI Pipeline with Pixi, the WAF OWASP Core Rule Set and TestCafe tests.☆15Updated 4 years ago
- Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.1, purl, and vers…☆121Updated last week
- OWASP Foundation Web Respository☆63Updated last year
- This Repository contains the stable beta preview of the next major secureCodeBox (SCB) release v2.0.0.☆24Updated 4 years ago
- Documentation of Semgrep: a fast, open-source, static analysis tool.☆41Updated this week
- Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…☆31Updated 2 years ago
- An extensible, heuristic-based vulnerability scanning tool for installed npm packages☆50Updated 3 years ago
- Web Application Security Checklist☆129Updated 3 months ago
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …☆65Updated 2 weeks ago
- OWASP Foundation Web Respository☆31Updated 2 years ago
- ZAP Management Scripts☆23Updated last month
- Maturity Model Collaborative project☆15Updated 2 years ago
- ☆33Updated 3 years ago
- ☆24Updated 3 years ago
- OWASP ASST (Automated Software Security Toolkit) | A Novel Open Source Web Security Scanner.☆171Updated 5 months ago
- DefectDojo Community Content☆18Updated last month