"topic:cwe" — Search

111 results for “topic:cwe”

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.

JavaScript20.7k3.6kUpdated 1 hour ago

android-securityapi-testingapkcwedevsecopsdynamic-analysisios-securitymalware-analysismastgmasvsmobile-securitymobsfmstgowasprestruntime-securitystatic-analysisweb-securitywindows-mobile-security

find-sec-bugs/find-sec-bugs

The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)

Java2.4k480Updated 9 months ago

bytecodecode-analysiscwefindbugshacktoberfestjavaowaspsecuritysecurity-auditstatic-analysistaint-analysis

fkie-cad/cwe_checker

cwe_checker finds vulnerable patterns in binary executables

Rust1.3k142Updated 11 months ago

binary-analysiscwecwe-checkerghidraprogram-analysisreverse-engineeringsecuritysecurity-scannerstatic-analyzervulnerability-scanner

toolswatch/vFeedArchived

The Correlated CVE Vulnerability And Threat Intelligence Database API

Python947241Updated 4 years ago

capeccommon-vulnerability-exposurecvecweexploitsintelligence-gatheringovalpythonscapthreatthreat-intelligencethreat-intelligence-databasethreatintelvfeedvulnerabilityvulnerability-database-entryvulnerability-databasesvulnerability-detectionvulnerability-identificationvulnerability-scanners

KTZgraph/sarenka

OSINT tool - gets data from services like shodan, censys etc. in one app

Python66087Updated 2 years ago

censys-apicvecve-databasescve-searchcwecwe-searchdjangodjango-rest-frameworkdockerosintosint-pythonpython3reactreact-persistreact-reduxreact-thunkreactjsreconnaissancescraping-websitesshodan-api

Galeax/CVE2CAPEC

Generate MITRE ATT&CK and D3FEND from a list of CVEs. Database with CVE, CWE, CAPEC, MITRE ATT&CK and D3FEND Techniques data is updated daily. Showcased at BlackHat Europe 2025 Arsenal.

Python28247Updated 19 hours ago

blackhatblackhat-arsenalblackhateurope-2025capeccvecvescwecybersecurityd3fendinfosecinfosectoolsmitre-attackmitre-attack-dbmitre-attack-navigatormitre-capecmitre-cwemitre-d3fendmitre-defendttp

reconmap/pentest-reports

Collection of penetration test reports and pentest report templates. Published by the the best security companies in the world.

TypeScript27955Updated 1 week ago

apicnacvecwehacktoberfestinfosecoscp-preppenetration-testingpentest-reportpentest-reportspentestingsecurity

Feysh-Group/corax-community

Corax for Java: A general static analysis framework for java code checking.

Kotlin25423Updated 1 year ago

abstract-interpretationcode-analysiscweflowdroidjavaowaspprogram-analysissarifsastsecuritysecurity-auditsoftware-analysissootstatic-analysisstatic-code-analysistaint-analysisvulnerability

Vulnogram/Vulnogram

Vulnogram is the tool for reserving, managing, and publishing CVEs. Get started at vulnogram.org or deploy Docker edition for full enterprise features.

JavaScript21464Updated 5 days ago

cvecve-jsoncvsscvssv3cwejsonnvdsecuritysecurity-automationsecurity-toolssecurity-vulnerabilityvulnerability

Patrowl/PatrowlHearsData

Open-Source Vulnerability Intelligence Center - Unified source of vulnerability, exploit and threat Intelligence feeds

Python14139Updated just now

cpecvecve-scanningcweexploitvulnerabilitiesvulnerability-identification

jeemok/better-npm-audit

The goal of this project is to provide additional features on top of the existing npm audit options

TypeScript13427Updated 2 months ago

auditcvecve-scanningcweghsagithubgithub-security-advisoriesignorenodenodejsnpmnpm-auditnspnsprcsecuritysecurity-auditskippervulnerabilityvulnerability-management

ALFA-group/BRON

"Linking Threat Tactics, Techniques, and Patterns with Defensive Weaknesses, Vulnerabilities and Affected Platform Configurations for Cyber Hunting" by Erik Hemberg, Jonathan Kelly, Michal Shlapentokh-Rothman, Bryn Reinstadler, Katherine Xu, Nick Rutar, Una-May O'Reilly

Python10628Updated 4 months ago

capeccvecwethreat-data

vfeedio/pyvfeed

Python API for vFeed Vulnerability & Threat Intelligence Database Enterprise & Pro Editions

Python10619Updated 1 month ago

capeccvecweexploitsovalpython-apiscapthreat-databasethreat-intelligencevulnerability-databasesvulnerability-managementvulnerability-scanners

sickcodes/security

Collection of CVEs from Sick Codes, or collaborations on https://sick.codes security research & advisories.

Shell9020Updated 3 years ago

advisoriesbugscvecwemitresecurityvulnerabilities

s2e-lab/SecurityEval

Repository for "SecurityEval Dataset: Mining Vulnerability Examples to Evaluate Machine Learning-Based Code Generation Techniques" published in MSR4P&S'22.

Python8615Updated 2 years ago

code-generationcwedatasetevaluationsecurity

amberzovitis/GraphKer

Open Source Tool - Cybersecurity Graph Database in Neo4j

Cypher7019Updated 2 years ago

capeccpecvecwecybersecuritydbmsdbms-applicationgraphgraph-databaseneo4josintosint-pythonpythonpython3security-tools

OWASP/cwe-tool

A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.

JavaScript6323Updated 9 months ago

clicvecwecwe-discoveryjsonmitreowaspvulnerabilities

binareio/FastCVE

FastCVE: A Dockerized CVE search tool with API and CLI support for security vulnerability queries.