14 results found Sort:

trickest
cve trickest
775
6.2k
mit
322
Gather and update all available and newest CVEs with their PoC.
cve poc cve-poc exploit hacking infosec red-team security latest-cve pentesting vulnerability security-tools vulnerabilities software-security penetration-testing software-vulnerability software-vulnerabilities
Created 2022-01-31
1,378 commits to main branch, last one 13 hours ago
DependencyTrack
dependency-track DependencyTrack
517
2.4k
apache-2.0
69
Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.
bom nvd sca purl sbom owasp appsec vulndb ossindex security cyclonedx devsecops package-url vulnerabilities bill-of-materials software-security component-analysis security-automation vulnerability-detection software-composition-analysis
Created 2013-07-16
4,910 commits to master branch, last one a day ago
trickest
inventory trickest
200
1.1k
mit
50
Asset inventory of over 800 public bug bounty programs.
osint recon fuzzing hacking infosec red-team security bugbounty bug-bounty osint-tool pentesting pentest-tool bugbountytips reconnaissance security-tools osint-resources software-security penetration-testing threat-intelligence
Created 2022-02-28
11,306 commits to main branch, last one 13 hours ago
dependency-check
dependency-check-sonar-plugin dependency-check
130
565
unknown
18
Integrates Dependency-Check reports into SonarQube
nvd owasp appsec security sonarqube visibility sonar-plugin vulnerabilities software-security component-analysis vulnerable-components
Created 2015-01-12
580 commits to master branch, last one about a month ago
CycloneDX
specification CycloneDX
56
328
apache-2.0
28
OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reduction. SBOM, SaaSBOM, HBOM, AI/ML-BOM, CBOM, OBOM, MBOM, VDR, and V...
bom cpe vex cbom mbom sbom spdx swid owasp license saasbom software standard cyclonedx supply-chain specification machine-learning bill-of-materials software-security software-bill-of-materials
Created 2017-05-29
944 commits to master branch, last one 4 days ago
albuch
sbt-dependency-check albuch
35
262
apache-2.0
11
SBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). :rainbow:
cve nvd sbt owasp scala appsec devops infosec security devsecops sbt-plugin security-audit static-analysis vulnerabilities software-security security-automation owasp-dependencycheck vulnerability-scanners software-composition-analysis
Created 2016-01-12
625 commits to main branch, last one 6 months ago
ARPSyndicate
cvemon ARPSyndicate
36
229
unknown
22
Monitoring exploits & references for CVEs
cve poc kenzer cve-poc exploit hacking exploits red-team security latest-cve recent-cve arpsyndicate vulnerability vulnerabilities software-security penetration-testing vulnerability-scanners
This repository has been archived (exclude archived)
Created 2021-04-13
2 commits to main branch, last one 5 months ago
trickest
find-gh-poc trickest
22
134
mit
5
Find CVE PoCs on GitHub
cve poc cve-poc exploit hacking red-team security latest-cve pentesting vulnerability security-tools software-security penetration-testing software-vulnerability software-vulnerabilities penetration-testing-tools
Created 2022-02-02
64 commits to main branch, last one 8 months ago
jenkinsci
dependency-check-plugin jenkinsci
71
127
apache-2.0
114
Jenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).
nvd owasp appsec devops security visibility jenkins-plugin vulnerabilities software-security component-analysis owasp-dependencycheck
Created 2013-08-02
1,025 commits to master branch, last one 3 days ago
vishalgarg-sec
Software-Supply-Chain-Security vishalgarg-sec
12
114
unknown
6
A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling, books, articles and a plethora of learning resources from the ...
vex cncf sbom slsa owasp openssf attestations software-security open-source-security supply-chain-attacks dependency-management software-transparency supply-chain-security vulnerability-management software-bill-of-material software-supply-chain-security
Created 2023-07-28
88 commits to main branch, last one 4 months ago
trickest
log4j trickest
23
111
mit
5
Trickest Workflow for discovering log4j vulnerabilities and gathering the newest community payloads.
cve log4j exploit hacking infosec red-team security bugbounty log4shell pentesting vulnerability security-tools vulnerabilities software-security penetration-testing software-vulnerability software-vulnerabilities
Created 2022-01-26
21 commits to main branch, last one 2 years ago
stevespringett
threatmodel-sdk stevespringett
24
77
unknown
18
A Java library for parsing and programmatically using threat models
sdk java appsec java-library threat-model secure-design software-security
Created 2016-08-26
83 commits to trunk branch, last one 2 years ago
OtherDevOpsGene
zap-sonar-plugin OtherDevOpsGene
29
67
gpl-3.0
15
Integrates OWASP Zed Attack Proxy reports into SonarQube
zap owasp appsec security owasp-zap sonarqube sonar-plugin dynamic-analysis software-security
Created 2015-12-07
166 commits to main branch, last one 2 years ago
SunLab-GMU
GraphSPD SunLab-GMU
7
37
apache-2.0
7
The official repository of "GraphSPD: Graph-Based Security Patch Detection with Enriched Code Semantics". The paper will appear in the IEEE Symposium on Security and Privacy (S&P), San Francisco, CA, ...
ml4code graphspd code-analysis graph-learning security-patch software-security
Created 2022-10-06
25 commits to main branch, last one 9 months ago