github / advisory-database

Related projects: ⓘ

• google / osv.dev
  Open source vulnerability DB and triage service.
  ☆1,488Updated this week
• CVEProject / cvelist
  Pilot program for CVE submission through GitHub. CVE Record Submission via Pilot PRs ending 6/30/2023
  ☆1,313Updated this week
• ossf / package-analysis
  Open Source Package Analysis
  ☆721Updated last week
• CloudSecurityAlliance / gsd-database
  Global Security Database
  ☆305Updated 4 months ago
• github / codeql
  CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security
  ☆7,521Updated this week
• github / securitylab
  Resources related to GitHub Security Lab
  ☆1,392Updated last month
• github / codeql-cli-binaries
  Binaries for the CodeQL CLI
  ☆738Updated this week
• github / vscode-codeql
  An extension for Visual Studio Code that adds rich language support for CodeQL
  ☆419Updated this week
• cisagov / log4j-affected-db
  A community sourced list of log4j-affected software
  ☆1,118Updated last year
• google / osv-scanner
  Vulnerability scanner written in Go which uses the data provided by https://osv.dev
  ☆6,117Updated this week
• semgrep / semgrep-rules
  Semgrep rules registry
  ☆772Updated this week
• guacsec / guac
  GUAC aggregates software security metadata into a high fidelity graph database.
  ☆1,257Updated this week
• DataDog / stratus-red-team
  Granular, Actionable Adversary Emulation for the Cloud
  ☆1,750Updated this week
• ossf / allstar
  GitHub App to set and enforce security policies
  ☆1,240Updated this week
• google / log4jscanner
  A log4j vulnerability filesystem scanner and Go package for analyzing JAR files.
  ☆1,561Updated 2 years ago
• ossf / scorecard
  OpenSSF Scorecard - Security health metrics for Open Source
  ☆4,404Updated this week
• trickest / cve
  Gather and update all available and newest CVEs with their PoC.
  ☆6,452Updated this week
• CVEProject / cvelistV5
  CVE cache of the official CVE List in CVE JSON 5 format
  ☆705Updated this week
• CVEProject / cve-schema
  This repository is used for the development of the CVE JSON record format. Releases of the CVE JSON record format will also be published …
  ☆245Updated last month
• slsa-framework / slsa
  Supply-chain Levels for Software Artifacts
  ☆1,521Updated this week
• google / clusterfuzzlite
  ClusterFuzzLite - Simple continuous fuzzing that runs in CI.
  ☆454Updated 3 months ago
• github / codeql-action
  Actions for running CodeQL analysis
  ☆1,134Updated this week
• projectdiscovery / interactsh
  An OOB interaction gathering server and client library
  ☆3,322Updated this week
• github / vscode-codeql-starter
  Starter workspace to use with the CodeQL extension for Visual Studio Code.
  ☆480Updated last week
• github / codeql-go
  The CodeQL extractor and libraries for Go.
  ☆464Updated last year
• anchore / syft
  CLI tool and library for generating a Software Bill of Materials from container images and filesystems
  ☆6,015Updated this week
• ShiftLeftSecurity / sast-scan
  Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…
  ☆790Updated last year
• Cyber-Guy1 / API-SecurityEmpire
  API Security Project aims to present unique attack & defense methods in API Security field
  ☆1,335Updated 6 months ago
• cisagov / RedEye
  RedEye is a visual analytic tool supporting Red & Blue Team operations
  ☆2,647Updated 10 months ago
• package-url / purl-spec
  A minimal specification for purl aka. a package "mostly universal" URL, join the discussion at https://gitter.im/package-url/Lobby
  ☆675Updated 3 weeks ago