A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.
☆63May 31, 2025Updated 9 months ago
Alternatives and similar repositories for cwe-tool
Users that are interested in cwe-tool are comparing it to the libraries listed below
Sorting:
- React Suspended is an educational frontend application riddled with security vulnerabilities☆10Jan 29, 2024Updated 2 years ago
- Hands-on practical use of HTTP security headers as browser security controls to help secure web applications☆19Jan 14, 2023Updated 3 years ago
- Decision trees generated via Graphviz to inform pragmatic threat modelling.☆11Jan 16, 2021Updated 5 years ago
- Pretty logs for Node and Browser 🤩☆13Updated this week
- Unveiling Cyber Threats: From assets to Vulnerability Insights☆17Oct 22, 2024Updated last year
- Snyk Node Runtime Agent☆16Apr 12, 2022Updated 3 years ago
- Training scenarios for cyber ranges☆15Apr 24, 2020Updated 5 years ago
- GitHub Action adding a comment with information about new npm dependencies detected in a pull request☆17Mar 30, 2024Updated last year
- This repo is just a guide where you can find all labs of burp suite resolved, you can see the workflow and all type of web attacks☆14Mar 29, 2022Updated 3 years ago
- Generic ASM Vulnerability Schema XSLT☆12May 30, 2018Updated 7 years ago
- Create subdomains and files wordlists from your browser history☆13Jan 10, 2023Updated 3 years ago
- gup aka Get All Urls parameters to create wordlists for brute forcing parameters.☆18Dec 4, 2021Updated 4 years ago
- Python API library for DefectDojo☆43Feb 24, 2023Updated 3 years ago
- OWASP Benchmark Project Utilities - Provides scorecard generation and crawling tools for Benchmark style test suites.☆20Updated this week
- QUESTER is a Web Pentesting & Bug Bounty Recon tool which queries URLs / Subdomains from the given list of URLs or subdomains.☆15Aug 2, 2021Updated 4 years ago
- Vulnerable FastAPI in reference to Opensource Web Application Security Project (OWASP) TOP 10: 2021☆16Jan 3, 2022Updated 4 years ago
- This repo hosts multiple codes, content, checklists etc which can help a penetration tester in a web application auditing.☆21Sep 14, 2023Updated 2 years ago
- A Tool for Domain Flyovers☆18Nov 12, 2019Updated 6 years ago
- Project intended to make Attack Maps part of software development by reducing the time it takes to complete them.☆47Nov 24, 2016Updated 9 years ago
- Cool One Liners at one place to make your recon and bug bounty skills better !☆15Oct 3, 2020Updated 5 years ago
- Simplified pure Java http server☆11May 20, 2022Updated 3 years ago
- This repo contains resources that a beginner would need to get started in Web application penetration testing and bug hunting.☆18Jul 24, 2022Updated 3 years ago
- Process Orchestration Framework: A camunda 7 fork☆21Updated this week
- Provides a generator that installs everything you need for a secure passwordless and two-factor authentication flow using WebAuthn, built…☆37Dec 3, 2025Updated 2 months ago
- OWASP Threat Dragon with Gitlab Integration☆27Nov 6, 2017Updated 8 years ago
- XSS Finder Via SSTI☆56Sep 14, 2023Updated 2 years ago
- ☆45Jun 23, 2020Updated 5 years ago
- Enhance Amazon CloudFront Origin Security with AWS WAF and AWS Secrets Manager☆25May 29, 2023Updated 2 years ago
- Exploit Prediction Scoring System (EPSS)☆31Jun 1, 2022Updated 3 years ago
- Code examples for working with SecretHub☆19Dec 19, 2022Updated 3 years ago
- ☆54Jan 22, 2025Updated last year
- Python API for vFeed Vulnerability & Threat Intelligence Database Enterprise & Pro Editions☆106Feb 1, 2026Updated last month
- Find which of your direct GitHub dependencies is susceptible to RepoJacking attacks☆61May 29, 2022Updated 3 years ago
- Audit C/C++ projects (make, cmake, command line, etc.)☆27Nov 15, 2021Updated 4 years ago
- ☆21Jun 4, 2025Updated 8 months ago
- commands☆27Nov 5, 2020Updated 5 years ago
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …☆68Jun 25, 2025Updated 8 months ago
- Provides access to libhashcat☆31Apr 6, 2024Updated last year
- OWASP Foundation Web Respository☆26Jan 27, 2026Updated last month