cyclonedx-cliCycloneDX CLI tool for SBOM analysis, merging, diffs and format conversions.
Stars: ✭ 154 (+470.37%)
cyclonedx-pythonCreates CycloneDX Software Bill of Materials (SBOM) from Python projects and environments.
Stars: ✭ 78 (+188.89%)
cyclonedx-maven-pluginCreates CycloneDX Software Bill of Materials (SBOM) from Maven projects
Stars: ✭ 103 (+281.48%)
cyclonedx-php-composerCreate CycloneDX Software Bill of Materials (SBOM) from PHP Composer projects
Stars: ✭ 20 (-25.93%)
cyclonedx-dotnetCreates CycloneDX Software Bill of Materials (SBOM) from .NET Projects
Stars: ✭ 110 (+307.41%)
specificationSoftware Bill of Material (SBOM) standard designed for use in application security contexts and supply chain component analysis
Stars: ✭ 129 (+377.78%)
awesome-sbomA curated list of SBOM (Software Bill Of Materials) related tools, frameworks, blogs, podcasts, and articles
Stars: ✭ 164 (+507.41%)
SBOMExamples and proof-of-concept for Software Bill of Materials (SBOM) code & data
Stars: ✭ 38 (+40.74%)
cyclonedx-node-modulecreates CycloneDX Software Bill of Materials (SBOM) from node-based projects
Stars: ✭ 104 (+285.19%)
KiCostBuild cost spreadsheet for a KiCad project.
Stars: ✭ 376 (+1292.59%)
cdxgenCreates CycloneDX Software Bill-of-Materials (SBOM) for your projects from source and container images. Supports many languages and package managers. Integrate in your CI//CD pipeline with automatic submission to Dependency Track server.
Stars: ✭ 75 (+177.78%)
casCodenotary Community Attestation Service (CAS) for notarization and authentication of digital artifacts
Stars: ✭ 137 (+407.41%)
dep-scanFully open-source security audit for project dependencies based on known vulnerabilities and advisories. Supports both local repos and container images. Integrates with various CI environments such as Azure Pipelines, CircleCI and Google CloudBuild. No server required!
Stars: ✭ 346 (+1181.48%)
lunasecLunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/
Stars: ✭ 1,261 (+4570.37%)
OWASP-Calculator🧮 An online calculator to assess the risk of web vulnerabilities based on OWASP Risk Assessment
Stars: ✭ 109 (+303.7%)
dependency-track-maven-pluginMaven plugin that integrates with a Dependency Track server to submit dependency manifests and optionally fail execution when vulnerable dependencies are found.
Stars: ✭ 28 (+3.7%)
dependency-check-pluginJenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).
Stars: ✭ 107 (+296.3%)
OpossumUIA light-weight app to audit and inventory large codebases for open source license compliance.
Stars: ✭ 32 (+18.52%)
ftwFramework for Testing WAFs (FTW!)
Stars: ✭ 106 (+292.59%)
vaingoghA vanity URL generator for your Go packages.
Stars: ✭ 12 (-55.56%)
aws-firewall-factoryDeploy, update, and stage your WAFs while managing them centrally via FMS.
Stars: ✭ 72 (+166.67%)
bom-radar-cardA rain radar card using the new tiled images from the Australian BOM
Stars: ✭ 52 (+92.59%)
bWAPPbWAPP latest modified for PHP7
Stars: ✭ 30 (+11.11%)
assimilation-officialThis is the official main repository for the Assimilation project
Stars: ✭ 47 (+74.07%)
osxbomA reimplementation of lsbom
Stars: ✭ 24 (-11.11%)
aks-baseline-regulatedThis is the Azure Kubernetes Service (AKS) baseline cluster for regulated workloads reference implementation as produced by the Microsoft Azure Architecture Center.
Stars: ✭ 73 (+170.37%)
BCIA RobotC Library for Vex Robotics
Stars: ✭ 12 (-55.56%)
go-modulesDocker + go modules in go1.11
Stars: ✭ 23 (-14.81%)
webdriverio-zap-proxyDemo - how to easily build security testing for Web App, using Zap and Glue
Stars: ✭ 58 (+114.81%)
KiBotKiCad automation utility
Stars: ✭ 203 (+651.85%)
treegenVegetation Generation Tool for Houdini
Stars: ✭ 72 (+166.67%)
owtf-dockerDocker repository for OWTF (64-bit Kali)
Stars: ✭ 32 (+18.52%)
sbom-operatorCatalogue all images of a Kubernetes cluster to multiple targets with Syft
Stars: ✭ 114 (+322.22%)
bom-weather-cardCustom Animated Weather Card for any weather provider
Stars: ✭ 111 (+311.11%)
VexV5DoomDOOM port for the Vex V5 Robot Brain
Stars: ✭ 39 (+44.44%)
vapivAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.
Stars: ✭ 674 (+2396.3%)
www-project-csrfguardThe aim of this project is to protect Java applications against CSRF attacks with the use of Synchronizer Tokens
Stars: ✭ 43 (+59.26%)
zhoudinihoudini hda tools focused on procedural modeling environments
Stars: ✭ 47 (+74.07%)
JavaScript-BootcampComplete Documentation For JavaScript Bootcamp Course By Osama Elzero.
Stars: ✭ 27 (+0%)
nodejssecurityDocumentation for Essential Node.js Security
Stars: ✭ 64 (+137.04%)
cwe-sdk-javascriptA Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC
Stars: ✭ 18 (-33.33%)
utfbomDetection of the BOM and removing as necessary
Stars: ✭ 87 (+222.22%)
www-project-web-security-testing-guideThe Web Security Testing Guide (WSTG) Project produces the premier cybersecurity testing resource for web application developers and security professionals.
Stars: ✭ 260 (+862.96%)
juice-shop-ctfCapture-the-Flag (CTF) environment setup tools for OWASP Juice Shop supporting CTFd, FBCTF and RootTheBox
Stars: ✭ 287 (+962.96%)
poc-jwtPOC about usage of JSON Web Tokens (JWT) in a secure way.
Stars: ✭ 18 (-33.33%)
owasp-zap-jwt-addonOWASP ZAP addon for finding vulnerabilities in JWT Implementations
Stars: ✭ 23 (-14.81%)
wafbypasserNo description or website provided.
Stars: ✭ 73 (+170.37%)
KC2PKKiCad to PartKeepr BOM Tool with Octopart integration
Stars: ✭ 28 (+3.7%)
ptpPentester's Tools Parser (PTP) provides an unified way to retrieve the information from all (final goal) automated pentesting tools and assign an automated ranking for each finding.
Stars: ✭ 28 (+3.7%)
AthenaTest your Security Skills, and Clean Code Development as a Pythonist, Hacker & Warrior 🥷🏻
Stars: ✭ 43 (+59.26%)
containers-security-projectA place for documenting threats and mitigations related to containers orchestrators (Kubernetes, Swarm etc)
Stars: ✭ 25 (-7.41%)
dotnet-security-unit-testsA web application that contains several unit tests for the purpose of .NET security
Stars: ✭ 25 (-7.41%)