software-security

There are 99 repositories under software-security topic.

trickest/cve
Gather and update all available and newest CVEs with their PoC.
Language:HTML6.6k 348 50837
DependencyTrack/dependency-track
Dependency-Track is an intelligent Component Analysis platform that allows organizations to identify and reduce risk in the software supply chain.
Language:Java2.7k 69 2k579
trickest/inventory
Asset inventory of over 800 public bug bounty programs.
Language:Shell1.3k 52 7225
dependency-check/dependency-check-sonar-plugin
Integrates Dependency-Check reports into SonarQube
Language:Java603 18 258135
feicong/macbook
《macOS软件安全与逆向分析》随书源码
Language:Objective-C374 23 1585
Plailect/keyshuffling
Keyshuffling Attack for Persistent Early Code Execution in the Nintendo 3DS Secure Bootchain
Language:TeX330 140 06
albuch/sbt-dependency-check
SBT Plugin for OWASP DependencyCheck. Monitor your dependencies and report if there are any publicly known vulnerabilities (e.g. CVEs). :rainbow:
Language:Scala266 11 8235
ARPSyndicate/cvemon
Monitoring exploits & references for CVEs
229 21 035
stevespringett/nist-data-mirror
A simple Java command-line utility to mirror the CVE JSON data from NIST.
Language:Java206 15 4293
trickest/find-gh-poc
Find CVE PoCs on GitHub
Language:Go138 4 1320
jenkinsci/dependency-check-plugin
Jenkins plugin for OWASP Dependency-Check. Inspects project components for known vulnerabilities (e.g. CVEs).
Language:Java129 113 073
vishalgarg-sec/Software-Supply-Chain-Security
A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling, books, articles and a plethora of learning resources from the web.
126 6 017
trickest/log4j
Trickest Workflow for discovering log4j vulnerabilities and gathering the newest community payloads.
112 5 423
stevespringett/threatmodel-sdk
A Java library for parsing and programmatically using threat models
Language:Java79 18 924
OtherDevOpsGene/zap-sonar-plugin
Integrates OWASP Zed Attack Proxy reports into SonarQube
Language:HTML69 15 4629
DoS0x99/cyber-security-books
A collection of cyber security books
46 1 09
stevespringett/vulndb-data-mirror
A simple Java command-line utility to mirror the entire contents of VulnDB.
Language:Java44 5 29
SunLab-GMU/GraphSPD
The official repository of "GraphSPD: Graph-Based Security Patch Detection with Enriched Code Semantics". The paper will appear in the IEEE Symposium on Security and Privacy (S&P), San Francisco, CA, May 22-26, 2023.
Language:Shell41 7 107
ramizebian/Software-Security
A Github repository I created while studying the Software Security course on Coursera. I made the repository public to discuss solutions with like-minded developers.
Language:C39 5 361
hakbot/hakbot-origin-controller
Vendor-Neutral Security Tool Automation Controller (over REST)
Language:Java29 6 2418
petrsocha/sicak
SIde-Channel Analysis toolKit: embedded security evaluation tools
Language:C++28 2 124
iosifache/ossfortress
Workshop for finding software vulnerabilities using open source tools, which includes a Goat-like Python and C application
Language:HTML26 6 05
fouzhe/security
software vulnerabilities
Language:C24 6 05
biniamf/data_obfuscation
Data Obfuscation for C/C++ Code Based on Residue Number Coding (RNC)
Language:C++20 4 13
OmarAlmighty/Coursera-Software-Security
Solutions to Software Security course provided by University of Maryland - Coursera
17 2 07
paser-group/continuous-secsoft
Placeholder for course materials taught by Akond Rahman
Language:Python17 3 653
trickest/packages
Automated compromise detection of the world's most popular packages
15 3 03
SoftwareCraftersSydney/events
Repository of events for the Software Crafters Sydney community
Language:JavaScript14 8 293
claire-lex/megagrep
Megagrep helps beginning a code review by searching for keywords in the code using "grep". It does not search for vulnerabilities directly but for places where you could manually find some.
Language:Python13 1 01
Plailect/bootroms
Attacking the Nintendo 3DS Boot ROMs
Language:TeX12 4 01
AlBovo/Olicyber-WriteUps
This repository contains all the source code for the various writeups I have written over time of all the Olicyber editions I have participated in.
Language:Python10 1 00
Catalyzator/SEEDlab
My lab reports for some of the security labs developed by Prof. Du of SU.
10 0 02
feicong/macbook_issues
《macOS软件安全与逆向分析》勘误
10 3 2310
i-m-down-QQ/writeups
CTF Writeups Backup
10 0 00
GiacomoFerro/antivirus-detection-analysis
Software Security project - Malware Detection Analysis A.A. 2019/2020.
Language:Python8 1 03
tum-i4/sip-toolchain
A toolchain for software integrity protection including self-checksumming, control flow integrity, result checking, oblivious hashing and a sample program protected using Intel SGX
8 9 01

software-security

trickest/cve

DependencyTrack/dependency-track

trickest/inventory

dependency-check/dependency-check-sonar-plugin

feicong/macbook

Plailect/keyshuffling

albuch/sbt-dependency-check

ARPSyndicate/cvemon

stevespringett/nist-data-mirror

trickest/find-gh-poc

jenkinsci/dependency-check-plugin

vishalgarg-sec/Software-Supply-Chain-Security

trickest/log4j

stevespringett/threatmodel-sdk

OtherDevOpsGene/zap-sonar-plugin

DoS0x99/cyber-security-books

stevespringett/vulndb-data-mirror

SunLab-GMU/GraphSPD

ramizebian/Software-Security

hakbot/hakbot-origin-controller

petrsocha/sicak

iosifache/ossfortress

fouzhe/security

biniamf/data_obfuscation

OmarAlmighty/Coursera-Software-Security

paser-group/continuous-secsoft

trickest/packages

SoftwareCraftersSydney/events

claire-lex/megagrep

Plailect/bootroms

AlBovo/Olicyber-WriteUps

Catalyzator/SEEDlab

feicong/macbook_issues

i-m-down-QQ/writeups

GiacomoFerro/antivirus-detection-analysis

tum-i4/sip-toolchain