mal-lang / enterpriseLang
☆16Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for enterpriseLang
- A Crowdsourcing Exchange for mapping various sources of security vulnerabilities, exposures, threats, and controls data☆26Updated 5 years ago
- A dataset of software supply chain compromises. Please help us maintain it!☆126Updated 2 years ago
- Stakeholder-Specific Vulnerability Categorization☆130Updated this week
- A compiler for the Meta Attack Language☆15Updated 2 years ago
- A comprehensive, systematic and actionable way to understand attacker behaviors and techniques with respect to the software supply chain☆86Updated 9 months ago
- Mappings Explorer enables cyber defenders to understand how security controls and capabilities map onto the adversary behaviors catalogue…☆43Updated last month
- Tools for conducting analysis of CVE data in Elasticsearch☆74Updated 4 months ago
- Kubernetes Pwnage for all☆54Updated 4 years ago
- This repo is a consolidation of Secure Software Supply Chain resources, such as talks, whitepapers, conferences and more.☆137Updated 2 years ago
- 🚨ATTENTION🚨 The CVE mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept here as…☆232Updated 7 months ago
- Open Source Tool - Cybersecurity Graph Database in Neo4j☆56Updated last year
- SysFlow documentation and issues tracker☆45Updated last month
- NCC Group Template for the Microsoft Threat Modeling Tool 2016 for Automotive Security☆46Updated 4 years ago
- "Linking Threat Tactics, Techniques, and Patterns with Defensive Weaknesses, Vulnerabilities and Affected Platform Configurations for Cyb…☆87Updated 4 months ago
- Public static website for the D3FEND project. For the D3FEND ontology repo see: https://github.com/d3fend/d3fend-ontology☆73Updated 3 weeks ago
- OWASP Ontology-driven Threat Modelling framework☆36Updated last year
- A MAL language that demonstrates the Maven project structure☆23Updated 2 years ago
- VINCE is the Vulnerability Information and Coordination Environment developed and used by the CERT Coordination Center to improve coordin…☆59Updated 3 weeks ago
- Extract useful semantic from CVE descriptions usinig NLP☆24Updated last year
- StartLeft is an automation tool for generating Threat Models written in the Open Threat Model (OTM) format from a variety of different so…☆48Updated this week
- Sharing software supply chain security open source projects☆39Updated last year
- ☆91Updated 6 months ago
- PEACH - a step-by-step framework for modeling and improving SaaS and PaaS tenant isolation, by managing the attack surface exposed by use…☆65Updated last year
- Python API for vFeed Vulnerability & Threat Intelligence Database Enterprise & Pro Editions☆97Updated last year
- A repository to store Rad Fingerprinting data.☆23Updated 3 months ago
- CALDERA plugin for adversary emulation of AI-enabled systems☆85Updated last year
- A logic-based enterprise network security analyzer☆110Updated last year
- Graph Representation of MITRE ATT&CK's CTI data☆48Updated 5 years ago
- IriusRisk Community☆62Updated last year
- Autoconfigured ELK Stack That Contains All EPSS and NVD CVE Data☆47Updated 4 months ago