Skip to content
@CERTCC

CERT Coordination Center (CERT/CC)

The CERT Coordination Center is part of Carnegie Mellon University's Software Engineering Institute.
README.md

Pinned

  1. SSVC SSVC Public

    Stakeholder-Specific Vulnerability Categorization

    Python 108 34

  2. VINCE VINCE Public

    VINCE is the Vulnerability Information and Coordination Environment developed and used by the CERT Coordination Center to improve coordinated vulnerability disclosure. VINCE is a Python-based web p…

    Python 49 25

  3. kaiju kaiju Public

    Forked from cmu-sei/kaiju

    CERT Kaiju is a binary analysis framework extension for the Ghidra software reverse engineering suite. This repository is the primary, canonical repository for this project -- file bug reports and …

    Java 260 21

  4. pharos pharos Public

    Forked from cmu-sei/pharos

    Automated static analysis tools for binary programs. This is a "mirror"; please file tickets, bug reports, or pull requests at the upstream home in @cmu-sei: https://github.com/cmu-sei/pharos

    C++ 5 2

  5. cveClient cveClient Public

    A client and library to cve-services 2.x to provide CVE management for CNA and CERTs

    JavaScript 17 7

  6. SBOM SBOM Public

    Examples and proof-of-concept for Software Bill of Materials (SBOM) code & data

    JavaScript 55 17

Repositories

Showing 10 of 33 repositories
  • labyrinth Public

    Come inside, and have a nice cup of tea.

    93 35 13 (1 issue needs help) 0 Updated May 22, 2024
  • metasploit-framework Public Forked from rapid7/metasploit-framework

    CERT/CC's fork of Metasploit Framework in which we are tagging commits that include vulnerability IDs. The first commit for an ID we recognize gets the tag for that ID. Aside from adding git tags, we do not otherwise modify the code. Updates hourly.

    Ruby 2 14,051 0 0 Updated May 22, 2024
  • SSVC Public

    Stakeholder-Specific Vulnerability Categorization

    Python 108 34 55 (4 issues need help) 0 Updated May 21, 2024
  • Vultron Public

    Vultron is a protocol for Coordinated Vulnerability Disclosure

    Python 8 2 3 0 Updated May 21, 2024
  • CERT-Guide-to-CVD Public

    Content for the CERT Guide to Coordinated Vulnerability Disclosure

    Shell 8 4 6 0 Updated May 21, 2024
  • VINCE Public

    VINCE is the Vulnerability Information and Coordination Environment developed and used by the CERT Coordination Center to improve coordinated vulnerability disclosure. VINCE is a Python-based web platform.

    Python 49 25 14 1 Updated May 21, 2024
  • exploitdb Public Forked from offensive-security/exploitdb

    CERT/CC's fork of the official Exploit Database repository in which we are tagging commits that include vulnerability IDs. The first commit for an ID we recognize gets the tag for that ID. Aside from adding git tags, we do not otherwise modify the code. Updates hourly.

    C 5 GPL-2.0 1,947 0 0 Updated May 20, 2024
  • PoC-Exploits Public archive

    Select proof-of-concept exploits for software vulnerabilities to aid in identifying and testing vulnerable systems.

    Python 179 BSD-3-Clause 47 0 0 Updated May 15, 2024
  • tapioca Public archive

    CERT Tapioca for MITM network analysis

    Python 180 26 0 0 Updated May 15, 2024
  • metasploit_json_parser Public archive

    Parser for the JSON database included in metasploit-framework that emits a CSV file of modules keyed by vulnerability IDs and references. NOTE: Superseded by git_vul_driller linked below.

    Python 2 MIT 0 0 2 Updated May 15, 2024
View all repositories

People

This organization has no public members. You must be a member to see who’s a part of this organization.