cisagov / vulnrichment
A repo to conduct vulnerability enrichment.
☆625Updated this week
Alternatives and similar repositories for vulnrichment:
Users that are interested in vulnrichment are comparing it to the libraries listed below
- Streamline vulnerability patching with CVSS, EPSS, and CISA's Known Exploited Vulnerabilities. Prioritize actions based on real-time thre…☆635Updated last month
- Vulnerability-Lookup facilitates quick correlation of vulnerabilities from various sources, independent of vulnerability IDs, and streaml…☆268Updated this week
- AttackGen is a cybersecurity incident response testing tool that leverages the power of large language models and the comprehensive MITRE…☆1,147Updated 3 weeks ago
- A repository of reports of malicious packages identified in Open Source package repositories, consumable via the Open Source Vulnerabilit…☆307Updated this week
- Enriching the NVD CVSS scores to include Temporal & Threat Metrics☆194Updated this week
- Attack Flow helps executives, SOC managers, and defenders easily understand how attackers compose ATT&CK techniques into attacks by devel…☆607Updated last month
- ☆367Updated last year
- The TTPForge is a Cybersecurity Framework for developing, automating, and executing attacker Tactics, Techniques, and Procedures (TTPs).☆375Updated 3 weeks ago
- A python module for working with ATT&CK☆542Updated this week
- Global Security Database☆318Updated last year
- A curated list of annual cyber security reports☆526Updated last week
- A curated Cyber "Security Orchestration, Automation and Response (SOAR)" awesome list.☆862Updated 8 months ago
- Stakeholder-Specific Vulnerability Categorization☆147Updated this week
- Galah: An LLM-powered web honeypot.☆535Updated 2 weeks ago
- An open project to list all publicly known cloud vulnerabilities and CSP security issues☆342Updated last month
- ✨ A compilation of suggested tools/services for each component in a detection and response pipeline, along with real-world examples. The …☆276Updated last year
- 💀 Don't fear the Reaper 👻☆506Updated this week
- A web application that assists network defenders, analysts, and researchers in the process of mapping adversary behaviors to the MITRE AT…☆1,178Updated last month
- Open source templates you can use to bootstrap your security programs☆842Updated last month
- This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple…☆672Updated 3 months ago
- Open Source Package Analysis☆833Updated 3 weeks ago
- An open-source dataset of malicious software packages found in the wild, 100% vetted by humans.☆201Updated this week
- Practical resources for offensive CI/CD security research. Curated the best resources I've seen since 2021.☆517Updated 2 months ago
- Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…☆293Updated this week
- OWASP Foundation Web Respository☆254Updated last week
- OSV-SCALIBR: A library for Software Composition Analysis☆331Updated this week
- An AI-powered threat modeling tool that leverages OpenAI's GPT models to generate threat models for a given application based on the STRI…☆717Updated 2 weeks ago
- 🚨ATTENTION🚨 The NIST 800-53 mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept…☆492Updated last year
- TRAM is an open-source platform designed to advance research into automating the mapping of cyber threat intelligence reports to MITRE AT…☆488Updated this week
- Halberd : Multi-Cloud Attack Tool☆272Updated 2 weeks ago