cisagov / vulnrichmentLinks
A repo to conduct vulnerability enrichment.
☆703Updated this week
Alternatives and similar repositories for vulnrichment
Users that are interested in vulnrichment are comparing it to the libraries listed below
Sorting:
- Vulnerability-Lookup facilitates quick correlation of vulnerabilities from various sources, independent of vulnerability IDs, and streaml…☆421Updated this week
- Streamline vulnerability patching with CVSS, EPSS, and CISA's Known Exploited Vulnerabilities. Prioritize actions based on real-time thre…☆680Updated 2 months ago
- Enriching the NVD CVSS scores to include Temporal & Threat Metrics☆214Updated this week
- A repository of reports of malicious packages identified in Open Source package repositories, consumable via the Open Source Vulnerabilit…☆425Updated last week
- An open-source dataset of malicious software packages found in the wild, 100% vetted by humans.☆268Updated last week
- Attack Flow helps executives, SOC managers, and defenders easily understand how attackers compose ATT&CK techniques into attacks by devel…☆702Updated last month
- AttackGen is a cybersecurity incident response testing tool that leverages the power of large language models and the comprehensive MITRE…☆1,201Updated last month
- A Risk-Based Prioritization Taxonomy for prioritizing CVEs (Common Vulnerabilities and Exposures).☆82Updated last year
- Open source templates you can use to bootstrap your security programs☆881Updated 6 months ago
- GuardDog is a CLI tool to Identify malicious PyPI and npm packages☆879Updated 2 weeks ago
- A curated list of annual cyber security reports☆906Updated this week
- Community reconstruction of the legacy JSON NVD Data Feeds. This project uses and redistributes data from the NVD API but is neither endo…☆191Updated this week
- Open Source Package Analysis☆857Updated 8 months ago
- Galah: An LLM-powered web honeypot.☆625Updated 4 months ago
- OWASP Foundation Web Respository☆332Updated last week
- blint is a Binary Linter that checks the security properties and capabilities of your executables. It can also generate a Software Bill-o…☆428Updated 3 weeks ago
- Global Security Database☆315Updated last year
- Stakeholder-Specific Vulnerability Categorization☆166Updated this week
- A collection of real-world threat model examples across various technologies, providing practical insights into identifying and mitigatin…☆471Updated 6 months ago
- An open project to list all publicly known cloud vulnerabilities and CSP security issues☆369Updated 3 months ago
- CISA CSAF Security Advisories☆90Updated last week
- 💀 Don't fear the Reaper 👻☆711Updated last month
- A web application that assists network defenders, analysts, and researchers in the process of mapping adversary behaviors to the MITRE AT…☆1,202Updated this week
- A curated list of large language model tools for cybersecurity research.☆478Updated last year
- OSV-SCALIBR: A library for Software Composition Analysis☆543Updated this week
- This repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple…☆729Updated 10 months ago
- The TTPForge is a Cybersecurity Framework for developing, automating, and executing attacker Tactics, Techniques, and Procedures (TTPs).☆404Updated last week
- Detection Engineering is a tactical function of a cybersecurity defense program that involves the design, implementation, and operation o…☆1,096Updated last month
- Gram is Klarna's own threat model diagramming tool☆329Updated 2 weeks ago
- ☆380Updated last year