SAP/risk-explorer-for-software-supply-chains external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

SAP/risk-explorer-for-software-supply-chains

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/SAP/risk-explorer-for-software-supply-chains)

Close

SAP / risk-explorer-for-software-supply-chainsView on GitHubMore

• External links
• Readme badge

A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and other resources. The taxonomy as well as related safeguards can be explored using an interactive visualization tool.

☆80Feb 28, 2026Updated this week

Alternatives and similar repositories for risk-explorer-for-software-supply-chains

Users that are interested in risk-explorer-for-software-supply-chains are comparing it to the libraries listed below

• ossf / package-feeds

  View on GitHub
  Feed parsing for language package manager updates
  ☆82Dec 4, 2024Updated last year
• SAP-samples / cross-language-detection-artifacts

  View on GitHub
  This repository complements our paper by offering the training dataset, the best-performing models utilized in our real-world experiment,…
  ☆21Mar 7, 2025Updated 11 months ago
• lyvd / bandit4mal

  View on GitHub
  A fork of Bandit tool with patterns to identifying malicious python code.
  ☆29Sep 1, 2022Updated 3 years ago
• chainguard-sandbox / bom-shelter

  View on GitHub
  A place to systematically store software bill of materials (SBOM) documents.
  ☆50Jun 1, 2023Updated 2 years ago
• RiskBasedPrioritization / RiskBasedPrioritization.github.io

  View on GitHub
  ☆20Jul 16, 2025Updated 7 months ago
• AevaOnline / supply-chain-synthesis

  View on GitHub
  Collating an overview of the open source software supply chain landscape -- and synthesizing that survey in a hopefully-useful way.
  ☆33Apr 4, 2023Updated 2 years ago
• informed-governance-project / NISINP

  View on GitHub
  Incident Notification Platform by @NC3-LU
  ☆11Updated this week
• ail-project / ail-feeder-twitter

  View on GitHub
  External twitter feeder for AIL framework
  ☆16Apr 16, 2023Updated 2 years ago
• bureado / awesome-software-supply-chain-security

  View on GitHub
  A compilation of resources in the software supply chain security domain, with emphasis on open source
  ☆348Updated this week
• ait-cs-IaaS / Taranis-NG

  View on GitHub
  Taranis NG is an OSINT gathering and analysis tool for CSIRT teams and organisations. It allows team-to-team collaboration, and contains …
  ☆10Oct 17, 2023Updated 2 years ago
• osssanitizer / maloss

  View on GitHub
  Towards Measuring Supply Chain Attacks on Package Managers for Interpreted Languages
  ☆136Oct 5, 2022Updated 3 years ago
• correctexam / corrigeExamBack

  View on GitHub
  Web app to grade your assessments anywhere
  ☆11Dec 31, 2025Updated 2 months ago
• scandale-project / scandale

  View on GitHub
  A libre software which is providing a backend architecture for collecting data from probes and storing proof of checks.
  ☆11Jan 16, 2026Updated last month
• Chocapikk / CVE-2023-46805

  View on GitHub
  Ivanti Pulse Secure CVE-2023-46805 Scanner - Based on Assetnote's Research
  ☆12Jan 19, 2024Updated 2 years ago
• opencybersecurityalliance / kestrel-jupyter

  View on GitHub
  Kestrel Jupyter Notebook Kernel
  ☆10Oct 19, 2023Updated 2 years ago
• mozilla / rust-cascade

  View on GitHub
  A filter cascade implementation in rust
  ☆15Apr 5, 2023Updated 2 years ago
• gcve-eu / gcve

  View on GitHub
  A Python client for the Global CVE Allocation System.
  ☆17Jan 31, 2026Updated last month
• SAP / project-kb

  View on GitHub
  Home page of project "KB"
  ☆133Mar 27, 2025Updated 11 months ago
• GEANT / TRANSITS

  View on GitHub
  Home for TRANSITS materials
  ☆25Jul 24, 2024Updated last year
• microsoft / OSSGadget

  View on GitHub
  Collection of tools for analyzing open source packages.
  ☆357Feb 24, 2026Updated last week
• Bristol-Cyber-Security-Group / decisions-disruptions-kit

  View on GitHub
  Getting started with Decisions-Disruptions
  ☆11Jan 28, 2020Updated 6 years ago
• DHARPA-Project / kiara

  View on GitHub
  Data orchestration and management.
  ☆10Aug 4, 2025Updated 7 months ago
• zhongxingyu / Java-Annotation-Study

  View on GitHub
  Source code and data about our large scale study about Java annotaion in practice
  ☆12Apr 14, 2023Updated 2 years ago
• KTH / programmable-society

  View on GitHub
  Home of course "Programmable Society" at KTH Royal Institute of Technology
  ☆21Dec 12, 2025Updated 2 months ago
• aaron-costello / ServiceNow-Schema

  View on GitHub
  A shortlist of core ServiceNow tables.
  ☆15Oct 16, 2023Updated 2 years ago
• MISP / misp-privacy-aware-exchange

  View on GitHub
  A privacy-aware exchange module to securely and privately share your indicators
  ☆14Aug 23, 2017Updated 8 years ago
• vulnerability-lookup / PyVulnerabilityLookup

  View on GitHub
  Python client and module for Vulnerability-Lookup.
  ☆14Dec 9, 2025Updated 2 months ago
• kunai-project / sandbox

  View on GitHub
  Sandbox samples and monitor them with kunai
  ☆29Jun 24, 2025Updated 8 months ago
• EC-DIGIT-CSIRC / openai-cti-summarizer

  View on GitHub
  Small web frontend for using openAI's GPT-3.5 and GPT-4's API
  ☆59Apr 9, 2025Updated 10 months ago
• CyCat-project / cycat-service

  View on GitHub
  CyCAT.org API back-end server including crawlers
  ☆29Feb 4, 2023Updated 3 years ago
• ASSERT-KTH / deptrim

  View on GitHub
  DepTrim automatically specializes the software supply chain of dependencies in Maven projects https://arxiv.org/pdf/2302.08370
  ☆15Feb 27, 2026Updated last week
• cisagov / flare-misp-service

  View on GitHub
  Automate the regular transfer of AIS data into a MISP Server
  ☆10Jun 5, 2024Updated last year
• cudeso / misp-scraper

  View on GitHub
  A web scraper to create MISP events and reports
  ☆17Jun 30, 2025Updated 8 months ago
• COSSAS / Certitude

  View on GitHub
  CERTITUDE - A python package to classify malicious URLs
  ☆20May 16, 2022Updated 3 years ago
• cudeso / misp-reporting

  View on GitHub
  A package to create HTML MISP reports, including volume of trending events and attributes, evens received from key organisations and targ…
  ☆11Aug 14, 2025Updated 6 months ago
• spwpun / ntp-4.2.8p15-cves

  View on GitHub
  5 cves of ntp 4.2.8p15 founded by me.
  ☆12Apr 11, 2023Updated 2 years ago
• ldklab / typomind-release

  View on GitHub
  ☆13Jun 26, 2023Updated 2 years ago
• ANSSI-FR / sftp2misp

  View on GitHub
  Automation script to download JSON MISP files from a SFTP server and import them via API to a MISP instance.
  ☆15May 12, 2023Updated 2 years ago
• ossf / project-template

  View on GitHub
  OpenSSF Project Template
  ☆23Nov 29, 2023Updated 2 years ago