vulnerability-management

5 posts

Automated Security Scanning Pipeline with Grype and OSV

Build automated security scanning pipelines with Grype, OSV, and Trivy—integrate vulnerability detection into CI/CD workflows with actionable reporting.

Oct 6, 2025 · 11 min read

IoT Security in Your Home Lab: Lessons from OWASP IoTGoat

Test IoT security with OWASP IoTGoat—practice firmware extraction, API exploitation, and hardware hacking in secure lab environments.

Sep 20, 2025 · 8 min read

Building a Smart Vulnerability Prioritization System with EPSS and CISA KEV

Prioritize vulnerabilities with EPSS and CISA KEV catalog—move beyond CVSS scores to risk-based patch management using exploitation probability metrics.

Sep 20, 2025 · 18 min read

Vulnerability Management at Scale with Open Source Tools

Build enterprise vulnerability management with open source—deploy scanning, remediation tracking, and compliance using Nessus and OpenVAS.

Jul 15, 2025 · 9 min read

Building a Python Vulnerability Scanner with NVD API Integration

Automate vulnerability detection in your homelab using Python and the National Vulnerability Database API. Track CVEs, scan dependencies, and integrate with monitoring systems.

Jan 30, 2024 · 8 min read