thinksabin / DTrackAuditor

Related projects: ⓘ

• OWASP / Container-Security-Verification-Standard
  Container Security Verification Standard
  ☆57Updated 5 years ago
• Mixeway / MixewayHub
  Mixeway is security orchestrator for vulnerability scanners which enable easy plug in integration with CICD pipelines. MixewayHub project…
  ☆107Updated 6 months ago
• DefectDojo / defectdojo_api
  Python API library for DefectDojo
  ☆40Updated last year
• OWASP / Software-Component-Verification-Standard
  Software Component Verification Standard (SCVS)
  ☆133Updated 5 months ago
• magnologan / awesome-sca
  A comprehensive list of software composition analysis tools.
  ☆119Updated 3 months ago
• ozontech / dtrack-audit
  OWASP Dependency Track API client for intergration into CI/CD pipeline
  ☆51Updated last month
• CycloneDX / bom-examples
  A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc)
  ☆168Updated 3 months ago
• meta-fun / awesome-software-supply-chain-security
  Sharing software supply chain security open source projects
  ☆38Updated last year
• AppThreat / vulnerability-db
  Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.0, purl, and vers…
  ☆92Updated last week
• OWASP / www-project-threat-dragon
  OWASP Foundation Threat Dragon Project Web Repository
  ☆68Updated last week
• devsecops / raindance
  Project intended to make Attack Maps part of software development by reducing the time it takes to complete them.
  ☆46Updated 7 years ago
• cve-search / cpe-guesser
  Tool to guess CPE name based on common software name
  ☆67Updated 5 months ago
• aquasecurity / vuln-list-update
  ☆169Updated last week
• OWASP / www-project-kubernetes-security-testing-guide
  OWASP Kubernetes Security Testing Guide
  ☆37Updated 2 weeks ago
• stevespringett / vulndb-data-mirror
  A simple Java command-line utility to mirror the entire contents of VulnDB.
  ☆42Updated 3 weeks ago
• AppThreat / sast-scan
  Fully open-source SAST scanner supporting a range of languages and frameworks. Integrates with major CI pipelines and IDE such as Azure D…
  ☆145Updated 4 years ago
• mrC2C / cis-benchmark-centOS-8
  Auditing Script based on CIS-BENCHMARK CENTOS 8
  ☆41Updated 2 years ago
• DependencyTrack / hyades
  Incubating project for decoupling responsibilities from Dependency-Track's monolithic API server into separate, scalable services.
  ☆59Updated this week
• jenkinsci / dependency-track-plugin
  Main repository for the official Dependency-Track Jenkins plugin
  ☆43Updated last week
• joshbressers / cve-analysis
  Tools for conducting analysis of CVE data in Elasticsearch
  ☆72Updated 2 months ago
• duo-labs / narrow
  Low-effort reachability analysis for third-party code vulnerabilities.
  ☆19Updated last year
• srcclr / efda
  Evaluation Framework for Dependency Analysis (EFDA)
  ☆40Updated 2 years ago
• microsoft / WAFBench
  WAFBench (wb) is a tool to measure the performance of WAF(Web Application Firewall) . It's based on latest code of ab (ApacheBench), and …
  ☆103Updated 2 years ago
• CycloneDX / gh-python-generate-sbom
  GitHub action to generate a CycloneDX SBOM for Python
  ☆13Updated 2 months ago
• checkmarx-ltd / cx-flow
  Checkmarx Scan and Result Orchestration
  ☆88Updated this week
• pbom-dev / OSCAR
  A comprehensive, systematic and actionable way to understand attacker behaviors and techniques with respect to the software supply chain
  ☆85Updated 7 months ago
• DefectDojo / Community-Contribs
  DefectDojo Community Content
  ☆17Updated 5 months ago
• SDA-SE / cluster-image-scanner
  Discover vulnerabilities and container image misconfiguration in production environments.
  ☆53Updated 2 weeks ago
• cve-search / CVE-Search-Docker
  Docker Image for CVE-Search
  ☆93Updated 7 months ago
• checkmarx-ts / checkmarx-python-sdk
  Checkmarx Python SDK
  ☆27Updated this week