Tag archives for Open Standards
The goal of the SATEC (Static Analysis Technologies Evaluation Criteria) project is to create a vendor-neutral set of criteria to help guide application security professionals ...
SCAP is a line of standards managed by NIST. It was created to provide a standardized approach to maintaining the security of enterprise systems, such ...
20
Apr
OpenFISMA v3.2 rc0 released
The OpenFISMA project is an open source application designed to reduce the complexity and automate the regulatory requirements of the Federal Information Security Management Act ...
Back in 2008, i was conducting a bunch of penetration testing and as a security consultant i had to document and to explain every findings ...
Common Weakness Enumeration. A community-Developed Dictionary of Software Weakness Types.
The Common Weakness Enumeration (CWE™) is a list of software weaknesses. Creating the list is a community ...
cIFrex is a small script written in PHP, which supports search for mistakes in the analysis of the source code. Using the database of filters ...
cvedetails.com is a security vulnerability database website, which collects data from multiple sources and provide some unique features like statistics, links to human readable OVAL ...
The 2011 CWE/SANS Top 25 Most Dangerous Software Errors is a list of the most widespread and critical errors that can lead to serious ...
The Event Management Automation Protocol (EMAP) is a suite of interoperable specifications designed to standardize the communication of event management data. EMAP ...
14
Apr
CVEchecker updated to v3.1
The goal of cvechecker is to report about possible vulnerabilities on your system, by scanning the installed software and matching the results with ...