Hecate - Vulnerability management platform and SCA by 0x3e4 in c/cybersecurity@infosec.pub
[-] 0x3e4@feddit.org 2 points 1 week ago

thanks and yes definitely.. not so sure about the tempo but i already work with hecate at my company (automate vuln info, SCA for repo scans,..)

Hecate - Vulnerability management platform and SCA by 0x3e4 in c/cybersecurity@infosec.pub
[-] 0x3e4@feddit.org 2 points 1 week ago

noted! regex will be included in future releases because its actually another good alternative.. thanks! regarding query strings -> already works with dql

8
Hecate - Vulnerability management platform and SCA (hecate.pw)
submitted 1 week ago* (last edited 1 week ago) by 0x3e4@feddit.org to c/cybersecurity@infosec.pub
5 comments fedilink

ive been working on a side project called hecate (foss) and looking for some people to give it a try and give some feedback.

its basically a local vuln db + SCA tool aimed at sec admins and devs:

  • vuln info collection + api access
  • SCA scans for repos and containers
  • AI part is fully opt-in/out (so nothing touches ai if you dont want it)

its based on a prototype i built for my research thesis so still some rough edges.. but the core works.

demo: https://hecate.pw/ -> system page & AI pages are locked on the demo site
selfhost: https://github.com/0x3e4/hecate

any feedback is welcome.. especially from people doing vuln mgmt, container scanning or dependency review day to day.. thanks in advance!

What are You Working on Wednesday by 0x3e4 in c/cybersecurity@infosec.pub
[-] 0x3e4@feddit.org 2 points 2 months ago* (last edited 2 months ago)

working on an easy selfhosted vuln database and ill also focus on container image & repo sbom scanning next i think.. take a look: https://hecate.pw/

feedback welcome

0x3e4

joined 1 year ago