Pinned Repositories
atom
Atom is a novel intermediate representation for applications and a standalone tool that is powered by chen.
atom-samples
Collection of atom, data-flow, and usage slices for appthreat/atom https://github.com/appthreat/atom.
vulnerability-db
Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.0, purl, and vers.
atom
Atom is a novel intermediate representation for applications and a standalone tool that is powered by the joern library.
atom-samples
Collection of atom, data-flow, and usage slices for appthreat/atom.
atom-samples-testing
vuln-spring
Intentionally Vulnerable Spring Application to test SAST tools.
cdxgen
Creates CycloneDX Bill of Materials (BOM) for your projects from source and container images. Supports many languages and package managers. Integrate in your CI/CD pipeline with automatic submission to Dependency Track server. GPT: https://chatgpt.com/g/g-673bfeb4037481919be8a2cd1bf868d2-cdxgen
blint
BLint is a Binary Linter to check the security properties, and capabilities in your executables. Since v2, blint is also an SBOM generator for binaries.
dep-scan
OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for project dependencies. Both local repositories and container images are supported as the input, and the tool is ideal for integration.
cerrussell's Repositories
cerrussell/atom
Atom is a novel intermediate representation for applications and a standalone tool that is powered by the joern library.
cerrussell/vuln-spring
Intentionally Vulnerable Spring Application to test SAST tools.
cerrussell/atom-samples
Collection of atom, data-flow, and usage slices for appthreat/atom.
cerrussell/atom-samples-testing
cerrussell/blint
BLint is a Binary Linter to check the security properties, and capabilities in your executables. It is powered by lief.
cerrussell/blint-demo
Repository for BLint-Action Demo
cerrussell/cdxgen
Creates CycloneDX Software Bill-of-Materials (SBOM) for your projects from source and container images. Supports many languages and package managers. Integrate in your CI//CD pipeline with automatic submission to Dependency Track server.
cerrussell/cdxgen-testing
cerrussell/cerrussell
cerrussell/chen
Code Hierarchy Exploration Net (chen)
cerrussell/dep-scan
Fully open-source security audit for project dependencies based on known vulnerabilities and advisories. Supports both local repos and container images. Integrates with various CI environments such as Azure Pipelines, CircleCI and Google CloudBuild. No server required!
cerrussell/dracon
Security scanning & static analysis tool - forked and rewritten from @thought-machine/dracon
cerrussell/proj
Rust bindings for the latest stable release of PROJ
cerrussell/sample-projects
cerrussell/vulnerability-db
Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm.
cerrussell/zaproxy
The ZAP core project