A comprehensive, systematic and actionable way to understand attacker behaviors and techniques with respect to the software supply chain
☆98Feb 11, 2025Updated last year
Alternatives and similar repositories for OSCAR
Users that are interested in OSCAR are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Polar is a secure and scalable knowledge graph framework, designed to address the challenges posed by building big data systems in highly…☆23Updated this week
- Hands-on Exercises for "Dangerous attack paths: Modern Development Environment Security - Devices and CI/CD pipelines"☆45Sep 19, 2022Updated 3 years ago
- A CLI that scans for sensitive data in source code☆14Mar 22, 2023Updated 3 years ago
- ReviveIT (revit) is a proof of concept file recovery tool (carver)☆13Dec 3, 2020Updated 5 years ago
- Software Supply Chain Attribute Integrity (SCAI) Demos and CLI tools☆19Jun 3, 2026Updated last week
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- PURL to CPE Relationship mapping project.☆118Updated this week
- A standard API specification for exchanging supply chain artifacts and intelligence☆108May 20, 2026Updated 3 weeks ago
- ☆28Aug 6, 2020Updated 5 years ago
- DustiLock is a tool to find which of your dependencies is susceptible to a Dependency Confusion attack.☆41May 22, 2026Updated 2 weeks ago
- A tool to generate a SBOM (Software Bill of Materials) for an installed Python module☆38Jun 4, 2026Updated last week
- Manager of 14 third-party sources comprising approximately 4,000 Semgrep rules 🗂☆115Dec 24, 2025Updated 5 months ago
- NVD API 2.0 client for CVE information☆14May 15, 2025Updated last year
- A wrapper script for https://sploitus.com to scrape query results for tools and exploits☆14Mar 3, 2019Updated 7 years ago
- ☆18Jun 4, 2026Updated last week
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Demo repository for running eBPF in GitHub Actions☆23Mar 27, 2025Updated last year
- Runtime Security Solution for your CI/CD Pipeline☆122May 20, 2026Updated 3 weeks ago
- SLSA Proposals☆12Jan 29, 2024Updated 2 years ago
- Send GKE audit events to falco☆12Jan 8, 2023Updated 3 years ago
- JS/TS library to easily build valid SARIF output from your javascript based SAST tools☆18Jun 4, 2026Updated last week
- CLI tool to validate CVE v5 JSON records.☆13May 26, 2026Updated 2 weeks ago
- Utilities for working with vivisect☆26Oct 1, 2025Updated 8 months ago
- in-toto Attestation Framework☆338May 18, 2026Updated 3 weeks ago
- Damn Vulnerable SCA Application☆44Mar 30, 2026Updated 2 months ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- Supply-chain Levels for Software Artifacts☆1,876Jun 3, 2026Updated last week
- Format agnostic SBOM tooling☆137Nov 20, 2025Updated 6 months ago
- A project to visualize the software supply chain☆59Sep 9, 2023Updated 2 years ago
- OASIS CSAF TC: Supporting version control for Work Product artifacts developed by members of TC, including prose specifications and secon…☆218May 28, 2026Updated 2 weeks ago
- A full insecure kubernetes application for testing security tools☆96Mar 28, 2026Updated 2 months ago
- Exploit & Vulnerability Intelligence Repository☆24Jan 20, 2025Updated last year
- A collection of packages for using security advisories from osv.dev in Node.js.☆21Updated this week
- A curated list of SBOM (Software Bill Of Materials) related tools, frameworks, blogs, podcasts, and articles☆584May 27, 2026Updated 2 weeks ago
- GUAC aggregates software security metadata into a high fidelity graph database.☆1,498Jun 4, 2026Updated last week
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Material for HolyJS 2020 Moscow☆12Nov 28, 2020Updated 5 years ago
- Scans SBOMs for vulnerabilities with Grype☆87Updated this week
- Toy browser on single process / thread☆33Aug 9, 2022Updated 3 years ago
- Microsoft Compound File Binary (CFB) file format Python IO☆15Apr 2, 2026Updated 2 months ago
- ☆12Aug 8, 2022Updated 3 years ago
- SBOM Explorer - Discover and pull public SBOMs☆21May 23, 2025Updated last year
- A utility to force query DNS over DoH off of CloudFlare API when DNS block is in place☆10Aug 26, 2018Updated 7 years ago