edoardottt / depsdev

Related projects ⓘ

Alternatives and complementary repositories for depsdev

• binareio / FastCVE
  FastCVE - fast, rich and API-based search for CVE and more (CPE, CWE, CAPEC)
  ☆39Updated 2 months ago
• wiz-sec-public / namespacehound
  NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.
  ☆55Updated 7 months ago
• google / osv-scalibr
  ☆93Updated this week
• raesene / eathar
  ☆24Updated 6 months ago
• doyensec / safeurl
  A Server Side Request Forgery (SSRF) protection library. Made with 🖤 by Doyensec LLC.
  ☆91Updated 6 months ago
• chainguard-dev / justtrustme
  ☆51Updated 8 months ago
• tacosframework / TACOS-spec
  TACOS framework structural details
  ☆19Updated 11 months ago
• AdnaneKhan / ActionsTOCTOU
  Example repository for GitHub Actions Time of Check to Time of Use (TOCTOU vulnerabilities)
  ☆21Updated 4 months ago
• smithy-security / smithy
  The security workflow engine!
  ☆73Updated this week
• chainguard-dev / bomshell
  An SBOM query language and associated utilities
  ☆54Updated 9 months ago
• AdnaneKhan / ActionsCacheBlasting
  Proof-of-concept code for research into GitHub Actions Cache poisoning.
  ☆21Updated 2 months ago
• Checkmarx / chainjacking
  Find which of your direct GitHub dependencies is susceptible to RepoJacking attacks
  ☆57Updated 2 years ago
• projectdiscovery / retryablehttp-go
  Package retryablehttp provides a familiar HTTP client interface with automatic retries and exponential backoff
  ☆121Updated this week
• projectdiscovery / nvd
  Fast, simple library in Go to fetch CVEs from the National Vulnerability Database feeds
  ☆25Updated last year
• google / ctrdac
  ☆9Updated 6 months ago
• hahwul / gee
  🏵 Gee is tool of stdin to each files and stdout. It is similar to the tee command, but there are more functions for convenience. In addi…
  ☆81Updated 11 months ago
• NodyHub / zipslipper
  Create tar/zip archives that try to exploit zipslip vulnerability.
  ☆45Updated last month
• anchore / vulnerability-match-labels
  Labeled vulnerability-package match pairs used as ground truth to evaluate vulnerability scanners
  ☆12Updated 3 weeks ago
• chainguard-dev / bom-shelter
  A place to systematically store software bill of materials (SBOM) documents.
  ☆44Updated last year
• SecureStackCo / visualizing-software-supply-chain
  A project to visualize the software supply chain
  ☆35Updated last year
• SecureStackCo / actions-sbom
  A GitHub Action that creates a SBOM from your application so you can meet compliance and security requirements. Add this to your dev, sta…
  ☆25Updated last year
• KaanSK / go-epss
  A Golang library for interacting with the EPSS (Exploit Prediction Scoring System).
  ☆27Updated 8 months ago
• owasp-amass / asset-db
  Database interaction layer to store open-asset-models in sqlite3 and postgres
  ☆16Updated this week
• anchore / grype-db
  ☆36Updated this week
• pandatix / nvdapi
  Unofficial but convenient Go wrapper around the NVD REST JSON API
  ☆32Updated this week
• projectdiscovery / yamldoc-go
  A documentation generator for YAML as code
  ☆21Updated last year
• ghostsecurity / waf-btk
  WAF bypass PoC
  ☆43Updated last year
• AppThreat / vulnerability-db
  Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.0, purl, and vers…
  ☆96Updated this week
• interlynk-io / sbomgr
  SBOM Grep - search through SBOMs
  ☆21Updated last month