OWASP / cwe-toolLinks
A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.
☆57Updated 3 weeks ago
Alternatives and similar repositories for cwe-tool
Users that are interested in cwe-tool are comparing it to the libraries listed below
Sorting:
- A Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC☆32Updated 5 months ago
- A community collection of security reviews of open source software components.☆95Updated last year
- The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…☆145Updated last year
- Python API for vFeed Vulnerability & Threat Intelligence Database Enterprise & Pro Editions☆102Updated 2 years ago
- Mitigate security concerns of Dependency Confusion supply chain security risks☆47Updated 2 years ago
- OWASP Foundation Web Respository☆28Updated 10 months ago
- Documentation of Semgrep: a fast, open-source, static analysis tool.☆41Updated this week
- Dependency Combobulator☆93Updated last year
- CI Pipeline with Pixi, the WAF OWASP Core Rule Set and TestCafe tests.☆15Updated 4 years ago
- A small tool to help developers understand a huge set of security requirements from appsec teams☆45Updated 2 years ago
- Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.1, purl, and vers…☆120Updated last week
- The Open Security Summit is focused on the collaboration between, Developers and Application Security☆45Updated 6 months ago
- Python API library for DefectDojo☆42Updated 2 years ago
- 🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.☆39Updated 6 months ago
- Static Token And Credential Scanner☆96Updated 2 years ago
- ☆110Updated this week
- Sharing software supply chain security open source projects☆50Updated 2 years ago
- ZAP Management Scripts☆23Updated 2 weeks ago
- A curated list of security tools for Hackers & Builders!☆100Updated 11 months ago
- ☆20Updated 6 years ago
- StartLeft is an automation tool for generating Threat Models written in the Open Threat Model (OTM) format from a variety of different so…☆50Updated 2 weeks ago
- VINCE is the Vulnerability Information and Coordination Environment developed and used by the CERT Coordination Center to improve coordin…☆70Updated this week
- A documentation and tracking project with the goal of making package management systems more secure.☆50Updated 4 years ago
- Unofficial api for cve.mitre.org☆40Updated 3 years ago
- Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…☆31Updated 2 years ago
- ☆35Updated 4 years ago
- Interactive IPython Notebook to demonstrate OWASP ZAP's API and Scripting Functions - OWASP ZAP 2.8.0☆41Updated 2 years ago
- A dataset of software supply chain compromises. Please help us maintain it!☆129Updated 2 years ago
- OWASP Foundation Web Respository☆31Updated 2 years ago
- AWS Security Checks☆39Updated 7 years ago