cwe

There are 72 repositories under cwe topic.

  • Mobile-Security-Framework-MobSF

    MobSF/Mobile-Security-Framework-MobSF

    Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.

    Language:JavaScript17.8k5781.5k3.3k
  • find-sec-bugs

    find-sec-bugs/find-sec-bugs

    The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)

    Language:Java2.3k89439475

  • fkie-cad/cwe_checker

    cwe_checker finds vulnerable patterns in binary executables

    Language:Rust1.2k28105122

  • toolswatch/vFeed

    The Correlated CVE Vulnerability And Threat Intelligence Database API

    Language:Python93611370243

  • KTZgraph/sarenka

    OSINT tool - gets data from services like shodan, censys etc. in one app

    Language:Python639241486

  • Feysh-Group/corax-community

    Corax for Java: A general static analysis framework for java code checking.

    Language:Kotlin2344620
  • Vulnogram

    Vulnogram/Vulnogram

    Vulnogram is a tool for creating and editing CVE information in CVE JSON format

    Language:JavaScript164812347

  • Patrowl/PatrowlHearsData

    Open-Source Vulnerability Intelligence Center - Unified source of vulnerability, exploit and threat Intelligence feeds

    Language:Python12214335

  • jeemok/better-npm-audit

    The goal of this project is to provide additional features on top of the existing npm audit options

    Language:TypeScript12044326

  • vfeedio/pyvfeed

    Python API for vFeed Vulnerability & Threat Intelligence Database Enterprise & Pro Editions

    Language:Python976422

  • ALFA-group/BRON

    "Linking Threat Tactics, Techniques, and Patterns with Defensive Weaknesses, Vulnerabilities and Affected Platform Configurations for Cyber Hunting" by Erik Hemberg, Jonathan Kelly, Michal Shlapentokh-Rothman, Bryn Reinstadler, Katherine Xu, Nick Rutar, Una-May O'Reilly

    Language:Python89102124

  • sickcodes/security

    Collection of CVEs from Sick Codes, or collaborations on https://sick.codes security research & advisories.

    Language:Shell8511218
  • CVE2CAPEC

    Galeax/CVE2CAPEC

    Generate a MITRE ATT&CK Navigator based on a list of CVEs. Database with CVE, CWE, CAPEC, and MITRE ATT&CK Techniques data is updated daily.

    Language:Python643611

  • amberzovitis/GraphKer

    Open Source Tool - Cybersecurity Graph Database in Neo4j

    Language:Cypher564111
  • SecurityEval

    s2e-lab/SecurityEval

    Repository for "SecurityEval Dataset: Mining Vulnerability Examples to Evaluate Machine Learning-Based Code Generation Techniques" published in MSR4P&S'22.

    Language:Python562213

  • OWASP/cwe-tool

    A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.

    Language:JavaScript556324

  • usnistgov/vulntology

    Development of the NIST vulnerability data ontology (Vulntology).

    Language:JavaScript37219911

  • OWASP/cwe-sdk-javascript

    A Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC

    Language:JavaScript335610

  • hrbrmstr/cisa-known-exploited-vulns

    Daily archiver & triage issue creator for new releases of CISA's Known Exploited Vulnerabilities list

    Language:HTML32664

  • tobyash86/WebGoat.NET

    WebGoat.NETCore - port of original WebGoat.NET to .NET Core

    Language:C#31535123

  • ispras/juliet-dynamic

    Juliet C/C++ Dynamic Test Suite

    27827

  • Hack23/sonar-cloudformation-plugin

    Sonarqube cloudformation plugin, IaC security supports cfn-nag/checkov

    Language:Java242689

  • justakazh/CVE_Database

    The Common Vulnerabilities Exposures (CVE) Database

    203011

  • Yuning-J/VulnerabilityClassifier

    Severity scoring and exploit categorisation for vulnerability reports using machine-learning tools.

    Language:Jupyter Notebook20117

  • antonioforte1995/VISE

    A search engine on information delivered by OSINT sources to support Vulnerability Assessment

    Language:Python18502

  • emo-crab/scap-rs

    National Vulnerability Database (NVD) implemented by rust

    Language:Rust18121

  • jgamblin/CISA_Enrichment

    CISA Known Exploited Vulnerabilities Catalog Enrichment

    Language:Jupyter Notebook18302

  • inspektre/vulnhub

    Search NVD locally

    Language:TypeScript14261

  • r-net-tools/net.security

    Security R package with a set of utils to analyse the different industry standards (MITRE and NIST).

    Language:R127310

  • center-for-threat-informed-defense/cwe-calculator

    The CWE Calculator enables software development teams to score and prioritize discovered weaknesses empirically based on data in the National Vulnerability Database (NVD).

    Language:Python115202

  • Yuning-J/NVDFeatureAnalysis

    Correlate NVD datasets wIth CWE/CAPEC/CVSS labels for customised usage. Plus static analysis and data visualisation.

    Language:Jupyter Notebook11104

  • DrRamm/android-cve-checker

    Python tool to check your Android kernel for missing CVE patches.

    Language:Python8201

  • eric-therond/owasptocvss

    A tool to calculate the CVSS score and the bounty amount of a vulnerability from its Owasp description

    Language:JavaScript7200

  • zaghaghi/neo4j-cve-scripts

    Scripts for downloading and importing CVE json feeds into Neo4j

    Language:Python7402

  • nthnle/nvd-feeds-collection

    To collect and combine all JSON vulnerability feeds from NIST's National Vulnerability Database with matching Exploit Database ID

    Language:Python6204

  • Root-Cause-Mapping-Working-Group/RCM-WG

    This repository contains information related to the Root Cause Mapping Working Group and its activities. CVE Numbering Authority (CNA) representatives are invited to join and contribute to the working group's efforts.

    6600