We build open-source tooling for the cybersecurity community, with a focus on OpenCTI connectors that enrich threat intelligence platforms with vulnerability data.
| Repository | Description |
|---|---|
| opencti-cve-org-connector | Imports the complete CVE dataset (300,000+ records) from the CVE Program into OpenCTI. Supports full and incremental (delta) updates, multi-version CVSS extraction (v2–v4.0), and creates AttackPattern, Software, and CourseOfAction entities with rich relationships. |
| opencti-epss-api-import | Fetches daily EPSS scores from FIRST.org and updates OpenCTI vulnerabilities with exploitation probability and percentile data, enabling risk-based prioritization of CVEs. |
| CFblog | Reusable Astro blog template for Cloudflare Workers with D1-backed content, R2 media storage, and Access-protected admin routes. |
- Production-ready — Docker images, adaptive rate limiting, state management, and error recovery built in.
- Comprehensive testing — Unit, integration, and real-data test suites for each connector.
- Supply-chain transparency — SBOM generation, container attestation, and automated vulnerability scanning via CI/CD pipelines.