Alternatives and similar repositories for cwe-tool

Users that are interested in cwe-tool are comparing it to the libraries listed below

• OWASP / cwe-sdk-javascript
  A Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC
  ☆32Updated 4 months ago
• vfeedio / pyvfeed
  Python API for vFeed Vulnerability & Threat Intelligence Database Enterprise & Pro Editions
  ☆101Updated 2 years ago
• snyk-labs / snync
  Mitigate security concerns of Dependency Confusion supply chain security risks
  ☆47Updated 2 years ago
• apiiro / combobulator
  Dependency Combobulator
  ☆93Updated last year
• IQTLabs / software-supply-chain-compromises
  A dataset of software supply chain compromises. Please help us maintain it!
  ☆128Updated 2 years ago
• iriusrisk / startleft
  StartLeft is an automation tool for generating Threat Models written in the Open Threat Model (OTM) format from a variety of different so…
  ☆50Updated last week
• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆144Updated last year
• ajinabraham / libsast
  Generic SAST Library
  ☆131Updated 6 months ago
• LuizBoina / dragon-gpt
  Dragon-GPT uses Chat-GPT, or local LLM, to execute automatic and AI-powered threat modeling analysis on a given OWASP Threat Dragon diagr…
  ☆35Updated 3 months ago
• we45 / ZAP-Mini-Workshop
  Interactive IPython Notebook to demonstrate OWASP ZAP's API and Scripting Functions - OWASP ZAP 2.8.0
  ☆41Updated 2 years ago
• mal-lang / exampleLang
  A MAL language that demonstrates the Maven project structure
  ☆23Updated 3 years ago
• Whitespots-OU / security-requirements-generator
  A small tool to help developers understand a huge set of security requirements from appsec teams
  ☆45Updated 2 years ago
• OWASP / Cloud-Native-Application-Security-Top-10
  ☆20Updated 6 years ago
• appsecco / owasp-threat-dragon-gitlab
  OWASP Threat Dragon with Gitlab Integration
  ☆27Updated 7 years ago
• ossf / security-reviews
  A community collection of security reviews of open source software components.
  ☆94Updated last year
• DevSlop / pixi-crs
  CI Pipeline with Pixi, the WAF OWASP Core Rule Set and TestCafe tests.
  ☆15Updated 3 years ago
• rusakovichma / TicTaaC
  Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …
  ☆65Updated 11 months ago
• CERTCC / VINCE
  VINCE is the Vulnerability Information and Coordination Environment developed and used by the CERT Coordination Center to improve coordin…
  ☆68Updated 3 weeks ago
• OpenSecuritySummit / oss-website
  The Open Security Summit is focused on the collaboration between, Developers and Application Security
  ☆45Updated 5 months ago
• Threagile / run-threagile-action
  GitHub action to run Threagile, the agile threat modeling toolkit, on a repo's threagile.yaml file
  ☆13Updated last year
• nodejs / security-advisories
  Security advisories for Node.js and the JavaScript ecosystem.
  ☆41Updated 4 years ago
• OWASP / www-project-integration-standards
  OWASP Foundation Web Respository
  ☆28Updated 9 months ago
• Threat-Modeling-Manifesto / threat-modeling-manifesto
  Threat Modeling Manifesto
  ☆28Updated 10 months ago
• RedHatProductSecurity / cvelib
  A Python library and command line interface for CVE Services.
  ☆65Updated 2 weeks ago
• franksec42 / Vulnerability-management-maturity
  Maturity Model Collaborative project
  ☆15Updated 2 years ago
• mario-platt / ASVS-Agile-Delivery-Guide
  ☆35Updated 4 years ago
• ochronasec / ochrona-cli
  A command line tool for detecting vulnerabilities in Python dependencies and doing safe package installs
  ☆51Updated 2 years ago
• OWASP / threat-dragon-desktop
  Desktop variant of OWASP Threat Dragon
  ☆77Updated 3 years ago
• OWASP / www-project-security-knowledge-framework
  OWASP Foundation Web Respository
  ☆63Updated last year
• DefectDojo / defectdojo_api
  Python API library for DefectDojo
  ☆42Updated 2 years ago