sbom-tool

There are 4 repositories under sbom-tool topic.

RetireJS / retire.js
scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds.
vulnerabilities scanner firefox-extension grunt-plugins javascript vulnerable-libraries insecure-libraries chrome-extension build-tool security software-composition-analysis sbom sbom-generator sbom-tool
Language:JavaScript 3636
intel / cve-bin-tool
The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 200 common, vulnerable components (openssl, libpng, libxml2, expat and others), or if you know the components used, you can get a list of known vulnerabilities associated with an SBOM or a list of components and versions.
cve cvss devsecops hacktoberfest python sbom sbom-tool security security-automation security-tools swrepo system-tools vulnerabilities vulnerability
Language:Python 1172
ARPSyndicate / puncia
The Panthera(P.)uncia of Cybersecurity - Official CLI utility for Subdomain Center & Exploit Observer.
arpsyndicate cyclonedx cyclonedx-sbom exploit sbom sbom-tool subdomain vulnerability
Language:Python 632
cyclonedx-python
CycloneDX / cyclonedx-python
CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments
python pip bom sbom spdx bill-of-materials software-bill-of-materials package-url purl cyclonedx owasp sbom-generator python3 poetry conda requirements environment sbom-tool
Language:Python 238
interlynk-io / sbomqs
SBOM quality score - Quality metrics for your sboms
golang cyclonedx spdx sbom sbom-examples sbom-tool go sbom-quality sbom-score sbom-samples devsecops-pipeline security-tools supply-chain-security
Language:Go 155
cyclonedx-node-module
CycloneDX / cyclonedx-node-module
creates CycloneDX Software-Bill-of-Materials (SBOM) from node-based projects
cyclonedx meta-package metapackage bom node nodejs sbom software-bill-of-materials dependency-graph sbom-generator sbom-tool
121
tiiuae / sbomnix
A suite of utilities to help with software supply chain challenges on nix targets
cyclonedx nix sbom sbom-generator sbom-tool python bill-of-materials cpe dependencies purl software-bill-of-materials security spdx-sbom static-analysis vulnerability-scanners software-supply-chain software-supply-chain-security
Language:Python 116
snyk / parlay
Enrich SBOMs with data from third party services
snyk cyclonedx sbom sbom-tool
Language:Go 102
CycloneDX / sbom-utility
Utility that provides an API platform for validating, querying and managing BOM data
sbom bom cyclonedx sbom-tool spdx spdx-sbom vex spdx-license bill-of-materials hacktoberfest mbom obom owasp package-url purl saasbom software-bill-of-materials vdr sbom-quality
Language:Go 86
cyclonedx-node-npm
CycloneDX / cyclonedx-node-npm
Create CycloneDX Software Bill of Materials (SBOM) from Node.js NPM projects.
bill-of-materials bom cyclonedx node nodejs npm sbom sbom-generator software-bill-of-materials dependency-graph sbom-tool owasp
Language:JavaScript 69
interlynk-io / sbomasm
SBOM Assembler - A tool to edit SBOM or assemble multiple sboms into a single sbom.
go golang cyclonedx devsecops gomodule oss sbom sbom-generator sbom-tool security spdx
Language:Go 50
spdx / ntia-conformance-checker
Check SPDX SBOM for NTIA minimum elements
sbom sbom-tool
Language:Python 50
cyclonedx-php-composer
CycloneDX / cyclonedx-php-composer
Create CycloneDX Software Bill of Materials (SBOM) from PHP Composer projects
bom spdx php composer-plugin bill-of-materials software-bill-of-materials package-url purl sbom cyclonedx owasp sbom-generator composer dependency-graph sbom-tool
Language:PHP 48
actions-sbom
SecureStackCo / actions-sbom
A GitHub Action that creates a SBOM from your application so you can meet compliance and security requirements. Add this to your dev, staging and prod steps and SecureStack will make sure that what you've just deployed is secure and meets your requirements, and has the SBOM to show it!
automation-testing bill-of-materials deployment deployment-automation o sbom sbom-distribution sbom-generator sbom-repository sbom-tool security security-audit security-automation
25
cyclonedx-webpack-plugin
CycloneDX / cyclonedx-webpack-plugin
Generate CycloneDX Software Bill of Materials (SBOM) from webpack bundles at compile time.
bom spdx bill-of-materials software-bill-of-materials package-url purl sbom cyclonedx webpack-plugin webpack owasp sbom-generator mbom javascript sbom-tool
Language:JavaScript 24
anthonyharrison / sbomdiff
This tool compares two Software Bill of Materials (SBOMs) and reports the differences.
cyclonedx sbom spdx devsecops tools sbom-tool
Language:Python 23
IBM / sonar-cryptography
This repository contains a SonarQube Plugin that detects cryptographic assets in source code and generates CBOM.
cbom crypto-scanner post-quantum post-quantum-cryptography quantum-safe sbom sbom-tool sonar sonarqube cbom-tool cryptographic-inventory cryptography cryptography-bom
Language:Java 20
interlynk-io / sbomgr
SBOM Grep - search through SBOMs
cyclonedx devsecops devsecops-pipeline go golang gomodule sbom-tool spdx supplychain
Language:Go 19
cyclonedx-node-yarn
CycloneDX / cyclonedx-node-yarn
Create CycloneDX Software Bill of Materials (SBOM) from Node.js Yarn projects.
node yarn yarn-plugin bom sbom bill-of-materials software-bill-of-materials cyclonedx sbom-generator nodejs sbom-tool
Language:JavaScript 18
anthonyharrison / lib4sbom
Library to ingest and generate SBOMs
cyclonedx devsecops library mlbom python sbom sbom-generator sbom-tool spdx
Language:Python 16
morpheuslord / Startup-SBOM
A tool to reverse engineer and inspect the RPM and APT databases to list all the packages along with executables, service and versions.
linux reverse-engineering sbom sbom-tool startup startup-script apt-packages linux-app package-resolver rpm-packa cyclonedx
Language:Python 15
anthonyharrison / sbom2doc
Transform SBOM contents into a formatted document including markdown and PDF formats
sbom sbom-tool cyclonedx devsecops markdown-generator pdf-generation spdx
Language:Python 14
interlynk-io / sbomex
Find & pull public SBOMs
go golang sbom sbom-distribution sbom-repository sbom-tool sbom-examples sbom-samples
Language:Go 13
philips-software / sbom-tool-installer-action
GitHub Action that installs and sets up the Microsoft SBOM Tool.
actions sbom sbom-tool
Language:TypeScript 10
freshli-cli
corgibytes / freshli-cli
A tool for displaying historical metrics about a project's dependencies. Run the Freshli CLI on your project to see how its dependency freshness changes over time.
dependencies libyear sbom-tool metrics
Language:C# 8
SoftwareDesignLab / SBOM-in-a-Box
SBOM-in-a-Box is a unified platform to promote the production, consumption, and utilization of Software Bills of Materials.
comparison-tool cyclonedx docker-compose gui sbom sbom-generator sbom-quality sbom-tool spdx vex vulnerability-exploitability-exchange
Language:Java 8
anthonyharrison / sbom-manager
Manage collection of SBOMs (Software Bill of Materials)
sbom spdx cyclonedx vulnerabilities security devsecops sbom-repository sbom-tool
Language:Python 7
anthonyharrison / sbom2dot
Create a dependency graph of the components within a SBOM
cyclonedx graphviz-dot-language sbom sbom-tool spdx
Language:Python 7
anthonyharrison / sbom4files
SBOM generator for files within a directory
cyclonedx devsecops sbom sbom-generator sbom-tool spdx tool
Language:Python 7
CycloneDX / cyclonedx-buildroot
Create CycloneDX Software Bill of Materials (SBOM) for Buildroot projects
bom bill-of-materials buildroot cyclonedx sbom sbom-generator sbom-tool software-bill-of-materials
Language:Python 7
dineshr93 / sq
An SPDX Querying Binary
sbom sbom-tool
Language:Go 7
bigdawgsfootball / SBOM-Researcher
Looks up package vulnerability info in OSV DB from SBOMs
sbom sbom-reader sbom-tool sbom-research cyclonedx spdx
Language:PowerShell 3
higolab / Osmy
Osmy: A tool for software management using SPDX Documents
sbom sbom-tool spdx
Language:C# 2
PowerCommands / SecTools
PainKiller Security Tools
cmd cmdline cyclonedx dependency-track dependency-tracker dependency-tracking owasp owasp-dependencycheck sbom sbom-generator sbom-tool power-commands docker docker-desktop
Language:C# 2
anthonyharrison / sbomdebt
Determine the technical debt for a Software Bill of Materials (SBOM)
cyclonedx devsecops sbom sbom-tool security spdx technical-debt
Language:Python 1
krishnaduttPanchagnula / parlayaction
This repo hosts a github action to run parlay( which is used to Enrich SBOMs with data from third party services ) in piplines
cyclonedx cyclonedx-sbom parlay sbom sbom-tool snyk devsecops github-actions scanner scanning security tools vulnerability
Language:Shell 1

sbom-tool

RetireJS / retire.js

intel / cve-bin-tool

ARPSyndicate / puncia

CycloneDX / cyclonedx-python

interlynk-io / sbomqs

CycloneDX / cyclonedx-node-module

tiiuae / sbomnix

snyk / parlay

CycloneDX / sbom-utility

CycloneDX / cyclonedx-node-npm

interlynk-io / sbomasm

spdx / ntia-conformance-checker

CycloneDX / cyclonedx-php-composer

SecureStackCo / actions-sbom

CycloneDX / cyclonedx-webpack-plugin

anthonyharrison / sbomdiff

IBM / sonar-cryptography

interlynk-io / sbomgr

CycloneDX / cyclonedx-node-yarn

anthonyharrison / lib4sbom

morpheuslord / Startup-SBOM

anthonyharrison / sbom2doc

interlynk-io / sbomex

philips-software / sbom-tool-installer-action

corgibytes / freshli-cli

SoftwareDesignLab / SBOM-in-a-Box

anthonyharrison / sbom-manager

anthonyharrison / sbom2dot

anthonyharrison / sbom4files

CycloneDX / cyclonedx-buildroot

dineshr93 / sq

bigdawgsfootball / SBOM-Researcher

higolab / Osmy

PowerCommands / SecTools

anthonyharrison / sbomdebt

krishnaduttPanchagnula / parlayaction