AppThreat / vuln-list
Linux upstream vulnerabilities data suitable for dep-scan
☆17Updated this week
Alternatives and similar repositories for vuln-list:
Users that are interested in vuln-list are comparing it to the libraries listed below
- OSS-Fuzz vulnerabilities for OSV.☆149Updated this week
- CveXplore☆38Updated this week
- Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.1, purl, and vers…☆113Updated last month
- NVD/CVE as JSON files☆114Updated last week
- A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…☆74Updated last week
- Do You Know What's In Your Python Packages? A Tool for Visualizing Python Package Registry Security Audit Data☆19Updated 2 years ago
- Cybersecurity of Machine Learning and Artificial Intelligence☆71Updated 3 years ago
- The official repository of ICSME'23 paper "Exploring Security Commits in Python"☆17Updated last year
- VINCE is the Vulnerability Information and Coordination Environment developed and used by the CERT Coordination Center to improve coordin…☆63Updated last week
- CodeQL Security Queries☆26Updated this week
- A community collection of security reviews of open source software components.☆93Updated last year
- OWASP Benchmark Project Utilities - Provides scorecard generation and crawling tools for Benchmark style test suites.☆18Updated this week
- Community reconstruction of the legacy JSON NVD Data Feeds. This project uses and redistributes data from the NVD API but is neither endo…☆147Updated this week
- VulZoo: A Comprehensive Vulnerability Intelligence Dataset (ASE 2024 Demo)☆37Updated last week
- CVE.ICU code.☆38Updated this week
- Development of the NIST vulnerability data ontology (Vulntology).☆37Updated this week
- Mayhem example templates for programming languages and fuzzers that you love!☆29Updated last year
- Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)☆59Updated 3 weeks ago
- Automatically scan new pypi packages for potentially malicious code☆28Updated last year
- Python API for vFeed Vulnerability & Threat Intelligence Database Enterprise & Pro Editions☆100Updated last year
- A collection of Semgrep rules which followed security guidelines for .NET and Java.☆21Updated 3 years ago
- Scripts for Sourcegraph search results. Useful for static analysis <3☆27Updated last year
- Static Token And Credential Scanner☆96Updated last year
- [beta] Use Semgrep in LLMs using MCP framework☆32Updated this week
- CredData is a set of files including credentials in open source projects. CredData includes suspicious lines with manual review results a…☆33Updated last week
- Security Work and Manual Reviews facilitated by Open Source Technology Improvement Fund, aka OSTIF☆31Updated last month
- Documentation of Semgrep: a fast, open-source, static analysis tool.☆40Updated this week
- A Python library and command line interface for CVE Services.☆65Updated 2 weeks ago
- ☆26Updated last year
- A place to systematically store software bill of materials (SBOM) documents.☆44Updated last year