The security workflow engine!
☆136Nov 20, 2025Updated 3 months ago
Alternatives and similar repositories for smithy
Users that are interested in smithy are comparing it to the libraries listed below
Sorting:
- ☆141Updated this week
- Automated build and mirror of eBPF kernel probes for use as a driver with the Falco runtime security agent (https://falco.org/)☆15Nov 18, 2024Updated last year
- ☆30Jan 12, 2023Updated 3 years ago
- GitHub app for SBOM creation using cdxgen and upload to Dependency-Track☆22Updated this week
- 💅🏽 analyzes your github actions☆98Feb 9, 2026Updated 2 weeks ago
- Reasonably undetected shellcode stager and executer.☆36May 23, 2025Updated 9 months ago
- Kubernetes audit logging, when you don't control the control plane☆91Updated this week
- This repository contains a SonarQube Plugin that detects cryptographic assets in source code and generates CBOM.☆55Feb 9, 2026Updated 3 weeks ago
- A standard API specification for exchanging supply chain artifacts and intelligence☆100Feb 20, 2026Updated last week
- An adaptation of timwhitez's proxycall that uses kernelbase.dll!Beep.☆16Nov 1, 2023Updated 2 years ago
- ☆14Nov 13, 2018Updated 7 years ago
- A comprehensive framework and assessment toolkit for measuring and improving Cloud Native security maturity across 8 critical business fu…☆10Jun 24, 2025Updated 8 months ago
- Mass Assigner is a simple tool made to probe for mass assignment vulnerability through JSON field modification in HTTP requests☆17Jun 22, 2024Updated last year
- GitHub action to generate a CycloneDX SBOM for .NET☆12Jul 15, 2025Updated 7 months ago
- A collection of handy and specific tools for the Red Teamer☆11Aug 13, 2024Updated last year
- Do you want to learn AI Security but don't know where to start ? Take a look at this map.☆29Apr 23, 2024Updated last year
- Incubating project for decoupling responsibilities from Dependency-Track's monolithic API server into separate, scalable services.☆99Updated this week
- Cmdlets for capturing Windows Events☆14Mar 11, 2022Updated 3 years ago
- ☆12Dec 21, 2021Updated 4 years ago
- Agile Threat Modeling as Code☆13Jun 30, 2022Updated 3 years ago
- Core module for Forgiva Enterprise connecting Forgiva Server to Forgiva Webclient.☆13Mar 28, 2022Updated 3 years ago
- A documentation and tracking project with the goal of making package management systems more secure.☆51Mar 5, 2021Updated 4 years ago
- sbomasm: The Complete SBOM Management Toolkit☆105Updated this week
- An LLM and OCR based Indicator of Compromise Extraction Tool☆38Dec 4, 2024Updated last year
- Scans Software Bill of Materials (SBOMs) for security vulnerabilities☆603Feb 10, 2026Updated 2 weeks ago
- A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and disc…☆135Nov 15, 2025Updated 3 months ago
- Presentations☆10Oct 2, 2017Updated 8 years ago
- Configuration security analyzer for network devices. Pynipper-ng is an evolution of nipper-ng, updated and translated to python. [ALPHA v…☆30Jan 15, 2026Updated last month
- Piper Burp Suite Extender plugin☆16Jan 15, 2026Updated last month
- Maturity Model Collaborative project☆15Feb 27, 2023Updated 3 years ago
- sbomqs: The Comprehensive SBOM Quality & Compliance Tool☆269Updated this week
- Inspect certificate authorities in container images☆241Dec 4, 2025Updated 2 months ago
- Enrich SBOMs with data from third party services☆220Feb 11, 2026Updated 2 weeks ago
- An injector that use PT_LOAD technique☆12Nov 27, 2022Updated 3 years ago
- Public website cyclonedx.org☆12Dec 20, 2024Updated last year
- A GitHub App that acts like a Security Token Service (STS) for the Github API☆312Updated this week
- Analysis of the Enterprise SAST/DAST product landscape☆38Feb 28, 2024Updated 2 years ago
- This is a working copy of the OWASP Project Handbook and is the draft where changes are made before publishing a final version on the OWA…☆18Feb 22, 2017Updated 9 years ago
- argocd plugin to support Cue config language☆18Mar 18, 2024Updated last year