owasp-dep-scan / blintLinks
blint is a Binary Linter that checks the security properties and capabilities of your executables. It can also generate a Software Bill-of-Materials (SBOM) for supported binaries.
☆428Updated 3 weeks ago
Alternatives and similar repositories for blint
Users that are interested in blint are comparing it to the libraries listed below
Sorting:
- Deep Linux runtime visibility meets Wireshark☆297Updated last month
- Vulnerability-Lookup facilitates quick correlation of vulnerabilities from various sources, independent of vulnerability IDs, and streaml…☆421Updated this week
- Gram is Klarna's own threat model diagramming tool☆329Updated 2 weeks ago
- Threat-hunting tool for Linux☆1,025Updated last month
- A repo to conduct vulnerability enrichment.☆703Updated this week
- #supply #chain #attack #detection☆629Updated this week
- Streamline vulnerability patching with CVSS, EPSS, and CISA's Known Exploited Vulnerabilities. Prioritize actions based on real-time thre…☆680Updated 2 months ago
- A scalable file analysis and data generation platform that allows users to easily orchestrate arbitrary docker/vm/shell tools at scale.☆970Updated last week
- Vanir is a source code-based static analysis tool that automatically identifies the list of missing security patches in the target system…☆343Updated 2 months ago
- boostsecurityio/poutine☆347Updated 3 weeks ago
- Pen Test Report Generation and Assessment Collaboration☆584Updated 2 weeks ago
- 💀 Don't fear the Reaper 👻☆711Updated last month
- Static code analyser for backdoors and malicious code in git repos using OpenAI compatible LLM APIs☆73Updated last year
- Enriching the NVD CVSS scores to include Temporal & Threat Metrics☆214Updated this week
- A repository of reports of malicious packages identified in Open Source package repositories, consumable via the Open Source Vulnerabilit…☆425Updated this week
- ☆75Updated 9 months ago
- Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently …☆314Updated 2 months ago
- Add a layer of active defense to your cloud applications.☆101Updated 2 weeks ago
- Validate the isolation posture of your container environment.☆306Updated 2 weeks ago
- RedFlag uses AI to identify high-risk code changes. Run it in batch mode for release candidate testing or in CI pipelines to flag PRs and…☆156Updated last year
- Prevent merging of malicious code in pull requests☆250Updated 9 months ago
- Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…☆437Updated this week
- Open source templates you can use to bootstrap your security programs☆881Updated 6 months ago
- CI/CD Security Analyzer☆726Updated 9 months ago
- GuardDog is a CLI tool to Identify malicious PyPI and npm packages☆879Updated 2 weeks ago
- Volatile Artifact Collector collects a snapshot of volatile data from a system. It tells you what is happening on a system, and is of par…☆256Updated last year
- OSV-SCALIBR: A library for Software Composition Analysis☆543Updated this week
- Scans Software Bill of Materials (SBOMs) for security vulnerabilities☆596Updated 8 months ago
- Supply-Chain Firewall (SCFW) is a tool for preventing the installation of malicious npm and PyPI packages☆209Updated this week
- A collection of real-world threat model examples across various technologies, providing practical insights into identifying and mitigatin…☆471Updated 6 months ago