The Wayback Machine - https://web.archive.org/web/20210802014303/https://github.com/topics/cwe
Skip to content
#

cwe

Star

Here are 27 public repositories matching this topic...

Language: All
Filter by language
All 27 Python 9 JavaScript 6 Java 2 R 2 TypeScript 2 C# 1 Jupyter Notebook 1 Rust 1 Shell 1
Sort: Best match
Sort options
Best match Most stars Fewest stars Most forks Fewest forks Recently updated Least recently updated
Mobile-Security-Framework-MobSF

MobSF / Mobile-Security-Framework-MobSF

Star

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
python rest static-analysis apk owasp dynamic-analysis web-security malware-analysis mobsf android-security mobile-security windows-mobile-security ios-security mobile-security-framework api-testing cwe devsecops runtime-security mstg masvs
  • Updated Jul 26, 2021
  • Python
find-sec-bugs

find-sec-bugs / find-sec-bugs

Star
Open

Detect usage of Apache BeanUtils as dangerous

h3xstream
h3xstream commented Oct 5, 2020

Description

BeanUtils is a library that is doing automatic mapping to Java object.
It can cause arm when the attack controls part of the list of properties being sets. BeanUtils does not blacklist properties like class, classloader or other objects that are likely to load arbitrary classes and possibly run code.

Code

import org.apache.commons.beanutils.BeanUtils;

public
Read more
good first issue hacktoberfest
Find more good first issues

fkie-cad / cwe_checker

Star
Open

Add Cutter/radare2 plugins

1
XVilka
XVilka commented Dec 13, 2019

I noticed you have a plugin for Ghidra, but it is not the only one FOSS tool available.
Radare2 is a highly-portable cross-platform reverse engineering framework and a toolkit without dependencies. It has support for analyzing binaries, disassembling code, debugging programs, attaching to remote GDB/LLDB, WinDbg servers, rich plugin system (see r2pm), an

Read more
enhancement good first issue

kac89 / vulnrepo

Star

VULNRΞPO - Free vulnerability report generator and repository end-to-end encrypted. Complete templates of issues, CWE, CVE, MITRE ATT&CK, PCI DSS, AES encryption, Nmap/Nessus/Burp/OpenVAS issues import, Jira export, TXT/HTML/PDF report, attachments, automatic changelog, statistics, vulnerability management, Security report builder.
angular nmap pci-dss pentesting bugbounty attachments cve nessus openvas vulnerability-management vulnerability-assessment cwe burpsuite end-to-end-encryption vulnerability-report vulnerability-research mitre-attack security-tool security-team penetration-testing-tools vulnr-po
  • Updated Jul 30, 2021
  • TypeScript

Improve this page

Add a description, image, and links to the cwe topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the cwe topic, visit your repo's landing page and select "manage topics."

Learn more