mal-lang / enterpriseLang
☆15Updated 3 years ago
Alternatives and similar repositories for enterpriseLang:
Users that are interested in enterpriseLang are comparing it to the libraries listed below
- A compiler for the Meta Attack Language☆15Updated 3 years ago
- A dataset of software supply chain compromises. Please help us maintain it!☆128Updated 2 years ago
- Open Source Tool - Cybersecurity Graph Database in Neo4j☆62Updated last year
- "Linking Threat Tactics, Techniques, and Patterns with Defensive Weaknesses, Vulnerabilities and Affected Platform Configurations for Cyb…☆92Updated 10 months ago
- Mappings Explorer enables cyber defenders to understand how security controls and capabilities map onto the adversary behaviors catalogue…☆62Updated 3 weeks ago
- A MAL language that demonstrates the Maven project structure☆23Updated 3 years ago
- A Crowdsourcing Exchange for mapping various sources of security vulnerabilities, exposures, threats, and controls data☆26Updated 5 years ago
- OWASP Ontology-driven Threat Modelling framework☆37Updated last year
- A logic-based enterprise network security analyzer☆125Updated 2 years ago
- An ever-growing list of resources for data-driven vulnerability assessment and prioritization☆124Updated 2 years ago
- OASIS TC Open Repository: CSAF Parser tool for parsing and checking the syntax of the Common Vulnerability Reporting Framework (CVRF) con…☆23Updated 2 years ago
- A place to systematically store software bill of materials (SBOM) documents.☆46Updated last year
- 🚨ATTENTION🚨 The CVE mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept here as…☆235Updated last year
- Posture Attribute Collection and Evaluation☆23Updated last year
- Stakeholder-Specific Vulnerability Categorization☆148Updated this week
- A comprehensive, systematic and actionable way to understand attacker behaviors and techniques with respect to the software supply chain☆93Updated 3 months ago
- Public static website for the D3FEND project. For the D3FEND ontology repo see: https://github.com/d3fend/d3fend-ontology☆81Updated 2 weeks ago
- MITRE Engage™ is a framework for conducting Denial, Deception, and Adversary Engagements.☆65Updated last year
- StartLeft is an automation tool for generating Threat Models written in the Open Threat Model (OTM) format from a variety of different so…☆50Updated last week
- VulDB Python scripts to fetch data via API☆20Updated 5 years ago
- A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…☆75Updated last week
- ☆76Updated 2 years ago
- Tools for conducting analysis of CVE data in Elasticsearch☆74Updated last month
- The Open Security Summit is focused on the collaboration between, Developers and Application Security☆45Updated 4 months ago
- CALDERA plugin for adversary emulation of AI-enabled systems☆96Updated last year
- This repository hosts community contributed Kestrel analytics☆17Updated 11 months ago
- A comprehensive list of software composition analysis tools.☆144Updated 11 months ago
- VINCE is the Vulnerability Information and Coordination Environment developed and used by the CERT Coordination Center to improve coordin…☆65Updated last month
- A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.☆56Updated 8 months ago
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.☆172Updated 5 months ago