11 skills found
kac89 / VulnrepoVULNRΞPO - Free vulnerability report generator and repository, end-to-end encrypted! Templates of issues, CWE,CVE,MITRE ATT&CK,PCI DSS, import Nmap/Nessus/Burp/OpenVAS/Bugcrowd/Trivy, Jira export, TXT/JSON/MARKDOWN/HTML/DOCX, attachments, automatic changelog, stats, vulnerability management, bugbounty, local ai/llm, super fast pentest reporting!
Galeax / CVE2CAPECGenerate MITRE ATT&CK and D3FEND from a list of CVEs. Database with CVE, CWE, CAPEC, MITRE ATT&CK and D3FEND Techniques data is updated daily. Showcased at BlackHat Europe 2025 Arsenal.
LiuYuancheng / Threats 2 MITRE AI MapperThe objective of this program is to leverage AI-LLM technology to process of human language-based CTI documents to succinctly summarize the attack flow path outlined within such materials via mapping the attack behaviors to the MITRE-ATT&CK and matching the vulnerabilities to MITRE-CWE.
OWASP / Cwe SDK JavascriptA Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC
muchdogesec / CtibutlerA web API for various cyber threat intelligence frameworks, including MITRE ATT&CK, CWE, ATLAS...
kafti / SvdbPython toolkit for MITRE identifiers (CVE, CPE, CWE, CVSS) and NVD databases.
lirantal / Cwe SDKA Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC
alejandrosaenz117 / Fetch Cwe ListA Node.js module to fetch, extract, and parse the latest or any specific CWE list from MITRE.
manish1772 / Machine Learning In Cyber SecurityThe data set was provided by https://nvd.nist.gov/feeds/json/cve/1.1/nvdcve-1.1-2019.json.zip. The dataset was in json format i had to flatten it first.There were inner records again.I have flattened the file based on the sample given in the mail. Data set was about cyber security vulnarabilities.National vulnarabilities database is the product of the US NIST.NVD provides all the information regarding vulnarabilities.The main features i researched were about CWE codes,CVSS base score. cwe codes refers to The Common Weakness Enumeration Specification (CWE) provides a common language of discourse for discussing, finding and dealing with the causes of software security vulnerabilities as they are found in code, design, or system architecture. Each individual CWE represents a single vulnerability type. CWE is currently maintained by the MITRE Corporation with support from the National Cyber Security Division (DHS). A detailed CWE list is currently available at the MITRE website; this list provides a detailed definition for each individual CWE.[used from NVD website] Later, NIST provides common measure to analyse the effect of vulnarability called CVSS base score.I have taken this feature to measure the severity of the vulnarability with respect to cwe codes The data preparation and EDA is pretty straight forward.This problem looks like unsupervised learning because there were no class lables i thought to just cluster the cwe codes based on severity i.e base score,hence i used k means clustering.The k means clustering can be prone to outliers but the feature base score was from 1-10 which means it is scaled up already.Hence i decided to go with k means.
muchdogesec / Cwe2stixA command line tool that turns MITRE CWEs into STIX 2.1 Objects.
Bilel-Eljaamii / Cwe Search MCPA Python-based interface to MITRE's Common Weakness Enumeration (CWE) database via the official API, enabling seamless vulnerability research and integration with MCP-compatible systems.
