all InfoSec news
GUAC - Aggregates Software Security Metadata Into A High Fidelity Graph Database
KitPloit - PenTest Tools! www.kitploit.com
Note: GUAC is under active development - if you are interested in contributing, please look at contributor guide and the "express interest" issue
Graph for Understanding Artifact Composition (GUAC) aggregates software security metadata into a high fidelity graph database—normalizing entity identities and mapping standard relationships between them. Querying this graph can drive higher-level organizational outcomes such as audit, policy, risk management, and even developer assistance.
Conceptually, GUAC occupies the “aggregation and synthesis” layer of the software supply chain transparency logical …
assistance audit database developer development drive express fidelity graph database guac guide high higher identities interest issue management mapping metadata outcomes policy relationships risk risk management security software software security standard supply chain under understanding