software-security topic

List software-security repositories

keyshuffling

331
Stars
6
Forks
Watchers

Keyshuffling Attack for Persistent Early Code Execution in the Nintendo 3DS Secure Bootchain

verified publisher icon Plailect

nist-data-mirror

205
Stars
92
Forks
Watchers

A simple Java command-line utility to mirror the CVE JSON data from NIST.

verified publisher icon stevespringett

threatmodel-sdk

77
Stars
24
Forks
Watchers

A Java library for parsing and programmatically using threat models

verified publisher icon stevespringett

vulndb-data-mirror

42
Stars
7
Forks
Watchers

A simple Java command-line utility to mirror the entire contents of VulnDB.

verified publisher icon stevespringett

sbt-dependency-check

263
Stars
35
Forks
Watchers

SBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). :rainbow:

verified publisher icon albuch

cve

6.2k
Stars
775
Forks
247
Watchers

Gather and update all available and newest CVEs with their PoC.

verified publisher icon trickest

dependency-track

2.4k
Stars
517
Forks
Watchers

Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.

verified publisher icon DependencyTrack

dependency-check-sonar-plugin

565
Stars
130
Forks
Watchers

Integrates Dependency-Check reports into SonarQube

verified publisher icon dependency-check

macbook

369
Stars
85
Forks
Watchers

《macOS软件安全与逆向分析》随书源码

verified publisher icon feicong

specification

363
Stars
59
Forks
Watchers

OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that provides advanced supply chain capabilities for cyber risk reduction. SBOM, SaaSBOM, HBOM, AI/ML-BOM, CBOM, OBOM, MBOM, VDR, and V...

verified publisher icon CycloneDX