cisagov / CSAF
CISA CSAF Security Advisories
☆66Updated this week
Alternatives and similar repositories for CSAF:
Users that are interested in CSAF are comparing it to the libraries listed below
- Advisories, guidance, best practice documents and more issued by members of the EU CSIRTs network, a network composed of EU Member States…☆60Updated this week
- Stakeholder-Specific Vulnerability Categorization☆139Updated this week
- ☆68Updated 7 months ago
- Enriching the NVD CVSS scores to include Temporal & Threat Metrics☆187Updated this week
- This is a repository of vendor-agnostic workflows provided for those interested in deploying Security Orchestration, Automation, and Resp…☆81Updated 4 years ago
- A Risk-Based Prioritization Taxonomy for prioritizing CVEs (Common Vulnerabilities and Exposures).☆73Updated 10 months ago
- ☆19Updated last month
- The ICS Advisory Project is an open-source project to provide DHS CISA ICS Advisories data in Comma Separated Value (CSV) format to suppo…☆78Updated this week
- Public static website for the D3FEND project. For the D3FEND ontology repo see: https://github.com/d3fend/d3fend-ontology☆76Updated last month
- A library of reference materials, tools, and other resources to aid threat profiling, threat quantification, and cyber adversary defense☆85Updated last year
- An application allowing users to explore, create, annotate, and share extensions of the MITRE ATT&CK® knowledge base. This repository con…☆44Updated this week
- SOARCA - The Open Source CACAO-based Security Orchestrator!☆69Updated this week
- Save toil in security operations with: Detection & Intelligence Analysis for New Alerts (D.I.A.N.A. )☆174Updated 6 months ago
- ☆27Updated 4 years ago
- Sensor Mappings to ATT&CK is a collection of resources to assist cyber defenders with understanding which sensors and events can help det…☆49Updated last week
- Vulnerability-Lookup facilitates quick correlation of vulnerabilities from various sources, independent of vulnerability IDs, and streaml…☆223Updated this week
- CTI Blueprints is a free suite of templates and tools that helps Cyber Threat Intelligence analysts create high-quality, actionable repor…☆233Updated last week
- Dettectinator - The Python library to your DeTT&CT YAML files.☆109Updated 2 months ago
- This directory features proven systems that demonstrate value to your threat-informed efforts using metrics.☆110Updated 4 months ago
- Extracts IoCs, TTPs and the relationships between them. Outputs a STIX 2.1 bundle.☆49Updated this week
- Exploit Prediction Scoring System (EPSS)☆25Updated 2 years ago
- 🚨ATTENTION🚨 The CVE mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept here as…☆234Updated 11 months ago
- ☆93Updated 2 years ago
- ☆47Updated this week
- Top ATT&CK Techniques helps defenders approach the breadth and complexity of MITRE ATT&CK® with a prioritized top 10 list of techniques t…☆117Updated 2 weeks ago
- A risk rating calculation methodology that uses the OWASP Risk Rating Methodology as a basis.☆29Updated 6 months ago
- Mappings Explorer enables cyber defenders to understand how security controls and capabilities map onto the adversary behaviors catalogue…☆56Updated 3 weeks ago
- This guide describes a process for developing Cyber Threat Intelligence Priority Intelligence Requirements☆118Updated last year
- ☆104Updated 9 months ago
- Synthetic Adversarial Log Objects: A Framework for synthentic log generation☆80Updated last year