Modern image vulnerability scanning & patching platform with multi-tool integration.

To help catch bugs & whatnot.

Microsoft Threat Intelligence Security Tools

A place to have all my tools

Oncall is a calendar tool designed for scheduling and managing on-call shifts. It can be used as source of dynamic ownership info for paging systems like http://iris.claims.

Using Jupyter Notebooks To Explore Public CVE Data Workshop

NVD API 2.0 client for CVE information

Stream your reMarkable screen to any browser - no hacks, no dependencies, just install and go

⚡ preexec and precmd functions for Bash just like Zsh.

Resources for the deps.dev API

Static checker for GitHub Actions workflow files

A collection of packages for using GitHub security advisories in Node.js.

This is the Rust course used by the Android team at Google. It provides you the material to quickly teach Rust.

NVD CVE Analysis Status Data

The CVE.ORG website

The CLI for working with JSON Schema. Covers formatting, linting, testing, bundling, and more for both local development and CI/CD pipelines

VulnCheck's official command line tool

This repository is used for the development of the CVE JSON record format. Releases of the CVE JSON record format will also be published here. This repository is managed by the CVE Quality Working …

Streamline vulnerability patching with CVSS, EPSS, and CISA's Known Exploited Vulnerabilities. Prioritize actions based on real-time threat information, gain a competitive advantage, and stay infor…

A repo to conduct vulnerability enrichment.

Make JSON greppable!

Community reconstruction of the legacy JSON NVD Data Feeds. This project uses and redistributes data from the NVD API but is neither endorsed nor certified by the NVD.

Github Action to Run CVE Lint daily

PURL to CPE Relationship mapping project.

A project to visualize the software supply chain

About me!

A comprehensive, systematic and actionable way to understand attacker behaviors and techniques with respect to the software supply chain