cyfinoid / sbomplayLinks
Browser based Privacy Aware SBoM Exploration
☆27Updated last month
Alternatives and similar repositories for sbomplay
Users that are interested in sbomplay are comparing it to the libraries listed below
Sorting:
- A powerful tool that leverages AI to automatically generate comprehensive security documentation for your projects☆102Updated 4 months ago
- AI featured threat modeling and security review action☆45Updated last year
- Focused malicious code detection ruleset, with a high protection-to-noise ratio☆142Updated 11 months ago
- Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …☆68Updated 7 months ago
- An experimental project using LLM technology to generate security documentation for Open Source Software (OSS) projects☆34Updated 11 months ago
- Vulnerability impact analyzer that reduces false positives in SCA tools by performing intelligent code analysis. Uses agentic AI with ope…☆63Updated 11 months ago
- atom is a novel intermediate representation for applications and a standalone tool that is powered by chen.☆84Updated last week
- ☆367Updated 4 months ago
- 🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.☆42Updated last year
- ☆61Updated 8 months ago
- A web CTF for training developers in bug hunting and secure coding!☆100Updated last year
- A small tool to help developers understand a huge set of security requirements from appsec teams☆46Updated 3 years ago
- A security tool that detects malicious packages from external vulnerability feeds and searches for them in your package registries or art…☆70Updated 2 months ago
- A security system to protect your vibecoded apps☆244Updated this week
- Create notes during a security code review in VSCode 📝 Import your favorite SAST tool findings 🛠️ and collaborate with others 🤝☆142Updated 3 months ago
- ☆38Updated last year
- A very simple open source implementation of Google's Project Naptime☆184Updated 10 months ago
- A fun POC that is built to understand AI security agents.☆34Updated 3 months ago
- A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling,…☆141Updated 2 years ago
- 🖇️ equivalence table between OWASP ASVS standard and STRIDE threat modeling methodology.☆76Updated last year
- Enriching the NVD CVSS scores to include Temporal & Threat Metrics☆215Updated this week
- Manager of 14 third-party sources comprising approximately 4,000 Semgrep rules 🗂☆98Updated last month
- A comprehensive checklist and guide for organizations looking to implement a robust cybersecurity program☆46Updated last week
- AI Security Shared Responsibility Model☆88Updated 4 months ago
- LLM Testing Findings Templates☆75Updated last year
- A growing collection of MCP servers bringing offensive security tools to AI assistants. Nmap, Ghidra, Nuclei, SQLMap, Hashcat and more.☆392Updated this week
- A full insecure kubernetes application for testing security tools☆90Updated 3 months ago
- Semgrep rules corresponding to the OWASP ASVS standard☆27Updated 5 years ago
- Gram is Klarna's own threat model diagramming tool☆328Updated 2 weeks ago
- Metis is an open-source, AI-driven tool for deep security code review☆465Updated last week