1. CertfuzzThis project contains the source code for the CERT Basic Fuzzing Framework (BFF) and the CERT Failure Observation Engine (FOE).
2. KeyfinderA tool for finding and analyzing private (and public) key files, including support for Android APK files.
3. TrommelTROMMEL: Sift Through Embedded Device Files to Identify Potential Vulnerable Indicators
5. Poc ExploitsSelect proof-of-concept exploits for software vulnerabilities to aid in identifying and testing vulnerable systems.
6. Vulnerability Data ArchiveWith the hope that someone finds the data useful, we periodically publish an archive of almost all of the non-sensitive vulnerability information in our vulnerability reports database. See also https://github.com/CERTCC/Vulnerability-Data-Archive-Tools
7. kaijuCERT Kaiju is a binary analysis framework extension for the Ghidra software reverse engineering suite. This repository is the primary, canonical repository for this project -- file bug reports and wishes here!
8. SBOMExamples and proof-of-concept for Software Bill of Materials (SBOM) code & data