10 open source projects by CERTCC

This project contains the source code for the CERT Basic Fuzzing Framework (BFF) and the CERT Failure Observation Engine (FOE).

A tool for finding and analyzing private (and public) key files, including support for Android APK files.

TROMMEL: Sift Through Embedded Device Files to Identify Potential Vulnerable Indicators

CERT Tapioca for MITM network analysis

Select proof-of-concept exploits for software vulnerabilities to aid in identifying and testing vulnerable systems.

With the hope that someone finds the data useful, we periodically publish an archive of almost all of the non-sensitive vulnerability information in our vulnerability reports database. See also https://github.com/CERTCC/Vulnerability-Data-Archive-Tools

CERT Kaiju is a binary analysis framework extension for the Ghidra software reverse engineering suite. This repository is the primary, canonical repository for this project -- file bug reports and wishes here!

Examples and proof-of-concept for Software Bill of Materials (SBOM) code & data

Come inside, and have a nice cup of tea.

Tools for working with the CERT Vulnerability Data Archive. See also https://github.com/CERTCC/Vulnerability-Data-Archive