software-security
There are 92 repositories under software-security topic.
trickest/cve
Gather and update all available and newest CVEs with their PoC.
DependencyTrack/dependency-track
Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.
trickest/inventory
Asset inventory of over 800 public bug bounty programs.
dependency-check/dependency-check-sonar-plugin
Integrates Dependency-Check reports into SonarQube
feicong/macbook
《macOS软件安全与逆向分析》随书源码
Plailect/keyshuffling
Keyshuffling Attack for Persistent Early Code Execution in the Nintendo 3DS Secure Bootchain
albuch/sbt-dependency-check
SBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). :rainbow:
ARPSyndicate/cvemon
Monitoring exploits & references for CVEs
stevespringett/nist-data-mirror
A simple Java command-line utility to mirror the CVE JSON data from NIST.
trickest/find-gh-poc
Find CVE PoCs on GitHub
jenkinsci/dependency-check-plugin
Jenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).
vishalgarg-sec/Software-Supply-Chain-Security
A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling, books, articles and a plethora of learning resources from the web.
trickest/log4j
Trickest Workflow for discovering log4j vulnerabilities and gathering the newest community payloads.
stevespringett/threatmodel-sdk
A Java library for parsing and programmatically using threat models
OtherDevOpsGene/zap-sonar-plugin
Integrates OWASP Zed Attack Proxy reports into SonarQube
stevespringett/vulndb-data-mirror
A simple Java command-line utility to mirror the entire contents of VulnDB.
ramizebian/Software-Security
A Github repository I created while studying the Software Security course on Coursera. I made the repository public to discuss solutions with like-minded developers.
SunLab-GMU/GraphSPD
The official repository of "GraphSPD: Graph-Based Security Patch Detection with Enriched Code Semantics". The paper will appear in the IEEE Symposium on Security and Privacy (S&P), San Francisco, CA, May 22-26, 2023.
hakbot/hakbot-origin-controller
Vendor-Neutral Security Tool Automation Controller (over REST)
petrsocha/sicak
SIde-Channel Analysis toolKit: embedded security evaluation tools
DoS0x99/cyber-security-books
A collection of cyber security books
fouzhe/security
software vulnerabilities
biniamf/data_obfuscation
Data Obfuscation for C/C++ Code Based on Residue Number Coding (RNC)
iosifache/oss_fortress
Workshop for finding software vulnerabilities using open source tools, which includes a Goat-like Python and C application
trickest/packages
Automated compromise detection of the world's most popular packages
OmarAlmighty/Coursera-Software-Security
Solutions to Software Security course provided by University of Maryland - Coursera
paser-group/continuous-secsoft
Placeholder for course materials taught by Akond Rahman
SoftwareCraftersSydney/events
Repository of events for the Software Crafters Sydney community
claire-lex/megagrep
Megagrep helps beginning a code review by searching for keywords in the code using "grep". It does not search for vulnerabilities directly but for places where you could manually find some.
Plailect/bootroms
Attacking the Nintendo 3DS Boot ROMs
Catalyzator/SEEDlab
My lab reports for some of the security labs developed by Prof. Du of SU.
feicong/macbook_issues
《macOS软件安全与逆向分析》勘误
GiacomoFerro/antivirus-detection-analysis
Software Security project - Malware Detection Analysis A.A. 2019/2020.
tum-i4/sip-toolchain
A toolchain for software integrity protection including self-checksumming, control flow integrity, result checking, oblivious hashing and a sample program protected using Intel SGX
AlBovo/Olicyber-WriteUps
Questa repository contiene le spiegazioni di come ho risolto alcuni problemi delle olimpiadi di cybersecurity.