fortify / fcliLinks
fcli is a command-line utility for interacting with various Fortify products
☆49Updated this week
Alternatives and similar repositories for fcli
Users that are interested in fcli are comparing it to the libraries listed below
Sorting:
- Scans Software Bill of Materials (SBOMs) for security vulnerabilities☆596Updated 10 months ago
- The OWASP DevSecOps Guideline explains how we can implement a secure pipeline and use best practices and introduce tools that we can use …☆81Updated last month
- A VS Code Extension for Trivy☆162Updated last week
- OWASP Foundation Web Respository☆101Updated last month
- ☆559Updated this week
- A comprehensive list of software composition analysis tools.☆162Updated 3 months ago
- SecObserve is an open source vulnerability and license management system for software development teams and cloud environments. It suppor…☆217Updated this week
- ☆140Updated last week
- A curated list of SBOM (Software Bill Of Materials) related tools, frameworks, blogs, podcasts, and articles☆564Updated 8 months ago
- Creates CycloneDX Bill of Materials (BOM) for your projects from source and container images. Supports many languages and package manager…☆889Updated last week
- VULCONHUB provides access to files to build your own hands-on vulnerable container image to learn and practice security☆28Updated 2 years ago
- A BOM repository server for distributing CycloneDX BOMs☆86Updated 7 months ago
- Secure Software Development Fundamentals courses (from the OpenSSF Best Practices WG)☆199Updated last month
- A cli that can be used to query various online vulnerability sources such as the NVD or GHSA. The CLI and docker images can be used to mi…☆158Updated last week
- Tool for collecting vulnerability data from various sources (used to build the grype database)☆110Updated this week
- CNAPPgoat is an open source project designed to modularly provision vulnerable-by-design components in cloud environments.☆292Updated last year
- A utility to (re-)import findings and language data into DefectDojo☆43Updated last year
- A curated list of Software Component Analysis (SCA) books, courses - free and paid, videos, tools, and tutorials.☆111Updated last year
- An open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchm…☆767Updated last year
- CycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.☆448Updated last month
- OWASP Foundation Web Respository☆56Updated 4 months ago
- Software Component Verification Standard (SCVS)☆153Updated 10 months ago
- Utility that provides an API platform for validating, querying and managing BOM data☆124Updated last month
- GitGoat is an open source tool that was built to enable DevOps and Engineering teams to design and implement a sustainable misconfigurati…☆171Updated last year
- A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc)☆215Updated 3 months ago
- CI/CD Security Analyzer☆729Updated 11 months ago
- OWASP Kubernetes security and compliance tool [WIP]☆108Updated 2 years ago
- Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…☆863Updated 2 years ago
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.☆179Updated last month
- Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets☆828Updated 10 months ago