OWASP / www-project-benchmarkLinks
OWASP Foundation Web Respository
☆18Updated this week
Alternatives and similar repositories for www-project-benchmark
Users that are interested in www-project-benchmark are comparing it to the libraries listed below
Sorting:
- Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.☆123Updated 2 years ago
- OSS-Fuzz vulnerabilities for OSV.☆168Updated this week
- CVSS2/3/4 library with interactive calculator for Python 2 and Python 3☆115Updated 5 months ago
- The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…☆159Updated last year
- SARIF Microsoft Visual Studio Code extension☆129Updated last week
- Post Processor for Facebook Static Analysis Tools.☆140Updated last week
- Python classes for the SARIF object model☆45Updated last year
- Open Source Vulnerability schema.☆221Updated last week
- A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…☆79Updated last week
- Global Security Database☆316Updated last year
- User-friendly documentation for the SARIF file format.☆335Updated 2 years ago
- A dataset of software supply chain compromises. Please help us maintain it!☆130Updated 3 years ago
- Securibench Micro is a benchmark for static analysis tools for security.☆26Updated 7 years ago
- Home page of project "KB"☆132Updated 9 months ago
- A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.☆61Updated 7 months ago
- A comprehensive, systematic and actionable way to understand attacker behaviors and techniques with respect to the software supply chain☆96Updated 11 months ago
- A pytest-inspired, DAST framework, capable of identifying vulnerabilities in a distributed, micro-service ecosystem through chaos enginee…☆227Updated last year
- CPE: Common Platform Enumeration for Python☆96Updated 3 months ago
- Vulnogram is the tool for reserving, managing, and publishing CVEs. Get started at vulnogram.org or deploy Docker edition for full enterp…☆213Updated this week
- Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.2, purl, and vers…☆133Updated 3 weeks ago
- Scan pypi for typosquatting☆38Updated 2 years ago
- An open-source dataset of malicious software packages found in the wild, 100% vetted by humans.☆290Updated this week
- A tool to automatically build a dependency graph and Software Bill of Materials (SBOM) for packages and arbitrary source code repositorie…☆380Updated last week
- A community collection of security reviews of open source software components.☆96Updated last year
- StartLeft is an automation tool for generating Threat Models written in the Open Threat Model (OTM) format from a variety of different so…☆52Updated last month
- A Python library and command line interface for CVE Services.☆71Updated 3 months ago
- NVD/CVE as JSON files☆123Updated this week
- Software Component Verification Standard (SCVS)☆153Updated 9 months ago
- Advisory database for Python packages published on pypi.org☆313Updated this week
- Docker Image for CVE-Search☆119Updated 10 months ago