I build stuff, I break stuff, I develop stuff to protect stuff. Creator of @DependencyTrack. @CycloneDX Chair. @Ecma-TC54 Founder. Core team of @package-url
nist-data-mirror. A simple Java command-line utility to mirror the CVE JSON data from NIST.
213disable-webassembly. Browser hacks to disable WebAssembly (WASM)
124threatmodel-sdk. A Java library for parsing and programmatically using threat models
83Alpine. An opinionated scaffolding framework that jumpstarts Java projects with an API-first design, secure defaults, and minimal dependencies
74CPE-Parser. A utility for validating and parsing Common Platform Enumeration (CPE) v2.2 and v2.3 as originally defined by MITRE and maintained by NIST
56cvss-calculator. A Java library for calculating CVSSv2, CVSSv3, and CVSSv4 scores and vectors
53vulndb-data-mirror. A simple Java command-line utility to mirror the entire contents of VulnDB.
48owasp-risk-rating-calculator. A Java library for programmatically calculating OWASP Risk Rating scores
19headlines. A collection of HTTP response headers to elevate the security of your web app!
9touchdraw-aws-stencil-library. Amazon Web Services Stencil Library for TouchDraw
6maven-uuid-generator. The Maven UUID Generator Plugin generates a unique UUID for each build and assigns the value to project.build.uuid
5json-schema-for-humans. Quickly generate HTML documentation from a JSON schema
1schemastore. A collection of JSON schema files including full API
1stevespringett.github.io.
118f.gsa.gov. The 18F website
1cocoapods-dependencies. Shows a project's CocoaPods dependency graph
1owasp-masvs. The OWASP MASVS (Mobile Application Security Verification Standard) is the industry standard for mobile app security.
1