a globally-accessible knowledge base of adversary tactics and techniques based on real-world observations on decentralized finance
-
Updated
Jun 22, 2024 - JavaScript
The Common Vulnerabilities and Exposures (CVE) system provides a reference-method for publicly known information-security vulnerabilities and exposures. The United States' National Cybersecurity FFRDC, operated by The Mitre Corporation, maintains the system, with funding from the US National Cyber Security Division of the US Department of Homeland Security
a globally-accessible knowledge base of adversary tactics and techniques based on real-world observations on decentralized finance
Jenkins RCE Proof-of-Concept: SECURITY-1266 / CVE-2019-1003000 (Script Security), CVE-2019-1003001 (Pipeline: Groovy), CVE-2019-1003002 (Pipeline: Declarative)
Vulnogram is a tool for creating and editing CVE information in CVE JSON format
CVE 2021-21315 PoC
Zed Attack Proxy Scripts for finding CVEs and Secrets.
A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.
Security Assessment Data Management and Analysis Tool
Development of the NIST vulnerability data ontology (Vulntology).
A Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC
Build a CVE library with aggregated CISA, EPSS and CVSS data
This repository contains multiple exploits I have written for various CVEs and CTFs
CVE-2023-52251 There is a Remote Code Execution vulnerability provectus/kafka-ui.
Open Source Threat Intelligence Desktop Assistant. 划词情报查询助手
Rebujito is a fork of IppSec.Rocks and serves as a repo for hacking tools and other resources such as vulnerable apps, cheatsheets or methodologies.
JS client-side library for the CVE API
Blind noSQL injection case study lab based on CVE-2018-3783