I'm a computer scientist, intensely interested in computer security and privacy.
https://fosstodon.org/@cedric
https://www.cedricbonhomme.org
Vulnerability Lookup facilitates quick correlation of vulnerabilities from various sources, independent of vulnerability IDs, and streamlines the management of Coordinated Vulnerability Disclosure.
Vulnerability Lookup facilitates quick correlation of vulnerabilities from various sources, independent of vulnerability IDs, and streamlines the management of Coordinated Vulnerability Disclosure ...
cross-posted from: https://lemmy.ml/post/18049618
> Vulnerability Lookup facilitates quick correlation of vulnerabilities from various sources (NIST, GitHub, CSAF-Siemens, CSAF-CISCO, CSAF-CERT-Bund, PySec, VARIoT, etc.), > independent of vulnerability IDs, and streamlines the management of Coordinated Vulnerability Disclosure (CVD). > Vulnerability Lookup is also a collaborative platform where users can comment on security advisories and create bundles. > > A Vulnerability Lookup instance operated by CIRCL > is available at https://vulnerability.circl.lu.
Vulnerability Lookup facilitates quick correlation of vulnerabilities from various sources, independent of vulnerability IDs, and streamlines the management of Coordinated Vulnerability Disclosure.
Vulnerability Lookup facilitates quick correlation of vulnerabilities from various sources, independent of vulnerability IDs, and streamlines the management of Coordinated Vulnerability Disclosure ...
Vulnerability Lookup facilitates quick correlation of vulnerabilities from various sources (NIST, GitHub, CSAF-Siemens, CSAF-CISCO, CSAF-CERT-Bund, PySec, VARIoT, etc.), independent of vulnerability IDs, and streamlines the management of Coordinated Vulnerability Disclosure (CVD). Vulnerability Lookup is also a collaborative platform where users can comment on security advisories and create bundles.
A Vulnerability Lookup instance operated by CIRCL is available at https://vulnerability.circl.lu.
A HIDS written in Python
A HIDS (host-based intrusion detection system) for verifying the integrity of a system. - GitHub - cedricbonhomme/pyHIDS: A HIDS (host-based intrusion detection system) for verifying the integrity ...
cross-posted from: https://lemmy.ml/post/7283249
> A HIDS (host-based intrusion detection system) for verifying the integrity of a system. > > ## Features > > * checks the integrity of system's files with a list of rules; > * checks the output of commands (iptables, ...); > * possibity to use RSA to sign to check the integrity of its database; > * alerts are written in the logs of the system; > * alerts can be sent via email to a list of users; > * alerts can be sent on IRC channels through the > irker IRC client (which should be running as > a daemon); > * verify files with Hashlookup, > Pandora, > MISP and > YARA; > * possibility to export the database in a Bloom or a Cuckoo filter. > > pyHIDS is under GPLv3 license. > > Homepage: https://github.com/cedricbonhomme/pyHIDS >
A HIDS written in Python
A HIDS (host-based intrusion detection system) for verifying the integrity of a system. - GitHub - cedricbonhomme/pyHIDS: A HIDS (host-based intrusion detection system) for verifying the integrity ...
A HIDS (host-based intrusion detection system) for verifying the integrity of a system.
Features
- checks the integrity of system's files with a list of rules;
- checks the output of commands (iptables, ...);
- possibity to use RSA to sign to check the integrity of its database;
- alerts are written in the logs of the system;
- alerts can be sent via email to a list of users;
- alerts can be sent on IRC channels through the irker IRC client (which should be running as a daemon);
- verify files with Hashlookup, Pandora, MISP and YARA;
- possibility to export the database in a Bloom or a Cuckoo filter.
pyHIDS is under GPLv3 license.
Homepage: https://github.com/cedricbonhomme/pyHIDS
Photons are dying. Eyelids are still blinking. Clock is ticking.
Photons are dying. Eyelids are still blinking. Clock is ticking. Heart is slowly beating. Parasites are rising. Cerebral cells are colliding. Troubles are spreading. Ions are crackling. Soul is screaming. Brain is throttling. SEGMENTATION FAULT - Rebooting in fail-safe mode… Dreams are finally coming. Eyes are twitching. Memory is restructuring. Pulse is accelerating. Demons are fading. Body is healing. Day dawn is breaking. Reality is emerging. Energy is flowing.
– Night troubles - Cédric Bonhomme - October 2023
of course, you can clone/fork the repository as you want.
A Cybersecurity Weather Map
The source code of this software is here: https://github.com/monarc-project/stats-service
Licensed under Affero GPL v3.
It is a decentralized service which can aggregate different kind stats about threats and vulnerabilities. Here is more information: https://www.monarc.lu/documentation/stats-service/master/architecture.html if you want to understand the details.
Recommendations and some security standards are available on the official MOSP instance.
MOSP, A platform for creating, editing and sharing, always valid, JSON objects
A collaborative platform for creating, editing and sharing JSON objects. - GitHub - NC3-LU/MOSP: A collaborative platform for creating, editing and sharing JSON objects.
MOSP is a platform for creating, editing and sharing validated JSON objects of any type.
The goal is to gather security related JSON objects, in the first place aimed to be used with MONARC.
You can use any available JSON schemas in order to create new JSON objects via a web form dynamically generated and based on the selected schema. It is possible to interact with MOSP programmatically thanks to its API (OpenAPI specification).
You can export MOSP objects for MISP (MISP galaxy). See the this video as example.
A self-hosted web news aggregator.
A web news aggregator. Contribute to cedricbonhomme/newspipe development by creating an account on GitHub.
It is written in Python (Flask) with a simple interface.
Licensed under GNU Affero General Public License version 3.
Easy to deploy but you can also use the official instance.