Posts tagged "vulnerability-management"

5 posts tagged with vulnerability-management

Automated Security Scanning Pipeline with Grype and OSV

October 6, 2025 • 11 min read

Build automated security scanning pipelines with Grype, OSV, and Trivy—integrate vulnerability detection into CI/CD workflows with actionable reporting.

Building a Smart Vulnerability Prioritization System with EPSS and CISA KEV

September 20, 2025 • 17 min read

Prioritize vulnerabilities with EPSS and CISA KEV catalog—move beyond CVSS scores to risk-based patch management using exploitation probability metrics.

IoT Security in Your Home Lab: Lessons from OWASP IoTGoat

September 20, 2025 • 8 min read

Test IoT security with OWASP IoTGoat—practice firmware extraction, API exploitation, and hardware hacking in secure lab environments.

Vulnerability Management at Scale with Open Source Tools

July 15, 2025 • 8 min read

Build enterprise vulnerability management with open source—deploy scanning, remediation tracking, and compliance using Nessus and OpenVAS.

Building a Python Vulnerability Scanner with NVD API Integration

January 30, 2024 • 8 min read

Automate vulnerability detection in your homelab using Python and the National Vulnerability Database API. Track CVEs, scan dependencies, and integrate with monitoring systems.

Browse other tags

ai (26) alerting (1) apparmor (1) architecture (4) authentication (1) automation (9) backup (1) blockchain (2) breakthrough (1) cloud (3) cognitive-science (1) compliance (2) computational-science (5) container-orchestration (1) container-security (3) containers (1) cryptography (9) cve (1) dashboard (1) defense-in-depth (1) devops (6) docker (4) ebpf (1) edge-computing (3) eleventy (1) ethics (4) future-technology (3) grafana (2) graylog (1) hardening (1) hardware (1) homelab (29) incident-response (1) infrastructure (3) iot (1) kernel (1) learning (3) linux (2) llm (12) lsm (1) machine-learning (10) mcp (2) monitoring (5) network-security (1) networking (9) nodejs (1) nvd (1) observability (3) ollama (1) open-source (6) optimization (1) optional-tag (1) passwords (1) performance (1) posts (70) primary-tag (1) privacy (8) professional-development (4) programming (10) prometheus (2) proxmox (1) python (6) quantum-computing (1) raspberry-pi (3) research (1) robotics (3) sbom (1) secondary-tag (1) security (39) selinux (1) siem (1) society (1) supply-chain (2) sustainability (4) tertiary-tag (1) threat-detection (3) tutorial (2) virtualization (2) wazuh (1) web-development (1) zero-knowledge (1) zero-trust (2) zk-snark (1)