AppThreat / vuln-listLinks
Linux upstream vulnerabilities data suitable for dep-scan
☆18Updated this week
Alternatives and similar repositories for vuln-list
Users that are interested in vuln-list are comparing it to the libraries listed below
Sorting:
- Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.1, purl, and vers…☆120Updated this week
- A community collection of security reviews of open source software components.☆94Updated last year
- A Python library and command line interface for CVE Services.☆65Updated 2 weeks ago
- A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…☆75Updated last month
- VINCE is the Vulnerability Information and Coordination Environment developed and used by the CERT Coordination Center to improve coordin…☆68Updated last month
- A collection of data fetchers, and simple quarterly and yearly CVE forecasting models.☆36Updated 5 months ago
- A collection of Semgrep rules which followed security guidelines for .NET and Java.☆23Updated 3 years ago
- OSS-Fuzz vulnerabilities for OSV.☆156Updated this week
- CveXplore☆40Updated 2 months ago
- Manager of third-party sources of Semgrep rules 🗂☆86Updated 10 months ago
- FastCVE: A Dockerized CVE search tool with API and CLI support for security vulnerability queries.☆52Updated last week
- IOCs from Google Threat Intelligence☆32Updated last week
- Documentation of Semgrep: a fast, open-source, static analysis tool.☆41Updated this week
- CVE.ICU code.☆42Updated this week
- Sharing software supply chain security open source projects☆50Updated 2 years ago
- CVSS v4.0 calculator☆31Updated 9 months ago
- Scan pypi for typosquatting☆36Updated 2 years ago
- using ML models for red teaming☆43Updated last year
- This open-source project tracks RED-LILI's activity over time as there are evidence the actor is still active. All information provided h…☆11Updated last year
- A place to systematically store software bill of materials (SBOM) documents.☆46Updated 2 years ago
- ☆40Updated 3 months ago
- Open Source Vulnerability schema.☆199Updated last week
- Scripts for Sourcegraph search results. Useful for static analysis <3☆28Updated last year
- The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…☆144Updated last year
- Static Token And Credential Scanner☆96Updated 2 years ago
- An open-source dataset of malicious software packages found in the wild, 100% vetted by humans.☆206Updated this week
- Community reconstruction of the legacy JSON NVD Data Feeds. This project uses and redistributes data from the NVD API but is neither endo…☆162Updated this week
- A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling,…☆135Updated last year
- Cake Fuzzer is a project that is meant to help automatically and continuously discover vulnerabilities in web applications created based …☆99Updated last year
- Do You Know What's In Your Python Packages? A Tool for Visualizing Python Package Registry Security Audit Data☆19Updated 2 years ago