TLP: Clear - DevGuard GitHub Reusable Workflows

🧩 DevGuard Action

chore/kaniko

0.12.0

0.13.2

0.13.4 main

0.15.1 add-artifact-name

attesting

0.12.3 attest-login

image-suffix

attest

 TLP: Clear - Devguard GitLab CI/CD Components

🧩 DevGuard CI-Components

TLP: Clear - The documentation for the DevGuard Project

📚 DevGuard Documentation

TLP: Clear - The repository of the DevGuard Web Project

👩‍💻 DevGuard Web

TLP: Clear - The repository for the customized DevGuard Postgresql

🗄️ Devguard Postgresql

TLP: Clear - The main repository - contains the API, the devguard-scanner CLI and the Helm-Chart

💡 DevGuard

TLP: Clear - Manage your CVEs seamlessly, Integrate your Vulnerability Scanners, Documentation made easy, Compliance to security Frameworks - OWASP Incubating Project

🛡️ DevGuard

Robot User

Badge-API

Test Project 1

Lars Hermges

Patrick Rissmann

Sebastian Kawelke

Tim Bastin

David Luhmer

Refaei Shikho

Frédéric Noppe

timbastin

seb-kw

Frederic-Kenji

refoo0

L3montree Cybersecurity

Webhook which sends notification into our matrix chat

Matrix Error-Tracking

The Closest Encloser Proof aspect of the DNS protocol (in RFC 5155 when RFC 9276 guidance is skipped) allows remote attackers to cause a denial of service (CPU consumption for SHA-1 computations) via DNSSEC responses in a random subdomain attack, aka the "NSEC3" issue. The RFC 5155 specification implies that an algorithm must perform thousands of iterations of a hash function in certain situations.

This project generates DNS zonefiles with custom NSEC3 parameters to reproduce and evaluate the attacks in CVE-2023-50868.

🛡️ DevGuard
Group
/🧩 DevGuard Action
Repository

CVE-2023-50868

Reopen this vulnerability

Affected component

Management decisions across the organization