Alternatives and similar repositories for vuln-list

Users that are interested in vuln-list are comparing it to the libraries listed below

• AppThreat / vulnerability-db
  Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.1, purl, and vers…
  ☆131Updated last week
• RedHatProductSecurity / cvelib
  A Python library and command line interface for CVE Services.
  ☆70Updated last month
• Vulnogram / Vulnogram
  Vulnogram is the tool for reserving, managing, and publishing CVEs. Get started at vulnogram.org or deploy Docker edition for full enterp…
  ☆209Updated this week
• ossf / security-reviews
  A community collection of security reviews of open source software components.
  ☆96Updated last year
• google / oss-fuzz-vulns
  OSS-Fuzz vulnerabilities for OSV.
  ☆166Updated this week
• vfeedio / pyvfeed
  Python API for vFeed Vulnerability & Threat Intelligence Database Enterprise & Pro Editions
  ☆102Updated last month
• jgamblin / monthlyCVEStats
  Monthly CVE Stats
  ☆43Updated 3 weeks ago
• stacscan / stacs
  Static Token And Credential Scanner
  ☆95Updated 2 years ago
• CERTCC / VINCE
  VINCE is the Vulnerability Information and Coordination Environment developed and used by the CERT Coordination Center to improve coordin…
  ☆83Updated 2 weeks ago
• Checkmarx / dustilock
  DustiLock is a tool to find which of your dependencies is susceptible to a Dependency Confusion attack.
  ☆40Updated 4 years ago
• ostif-org / OSTIF
  Security Work and Manual Reviews facilitated by Open Source Technology Improvement Fund, aka OSTIF
  ☆33Updated last week
• cve-search / CveXplore
  CveXplore
  ☆42Updated 2 months ago
• RogoLabs / cve.icu
  CVE.ICU code.
  ☆49Updated this week
• olbat / nvdcve
  NVD/CVE as JSON files
  ☆122Updated this week
• projectdiscovery / nvd
  Fast, simple library in Go to fetch CVEs from the National Vulnerability Database feeds
  ☆28Updated 2 years ago
• SAP / risk-explorer-for-software-supply-chains
  A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…
  ☆79Updated last week
• apiiro / combobulator
  Dependency Combobulator
  ☆93Updated last year
• semgrep / semgrep-docs
  Documentation of Semgrep: a fast, open-source, static analysis tool.
  ☆46Updated this week
• fkie-cad / nvd-json-data-feeds
  Community reconstruction of the legacy JSON NVD Data Feeds. This project uses and redistributes data from the NVD API but is neither endo…
  ☆185Updated this week
• sophos / gpt3-and-cybersecurity
  GPT-3 use cases for Cybersecurity
  ☆53Updated 2 years ago
• cablej / ransomwhere
  The open ransomware payment tracker
  ☆101Updated 3 months ago
• google / security-testbeds
  ☆53Updated last month
• Samsung / CredSweeper
  CredSweeper is a tool to detect credentials in any directories or files. CredSweeper could help users to detect unwanted exposure of cred…
  ☆143Updated last week
• cve-search / cpe-guesser
  Tool to guess CPE name based on common software name
  ☆106Updated 2 months ago
• Comcast / xGitGuard
  AI based Secrets Detection Python Framework
  ☆62Updated 5 months ago
• iosifache / semgrep-rules-manager
  Manager of third-party sources of Semgrep rules 🗂
  ☆90Updated last year
• tenable / Burp-extension-for-GPT
  an extension for Burp Suite to allow researchers to utilize GPT for analys is of HTTP requests and responses
  ☆112Updated 2 years ago
• pbom-dev / OSCAR
  A comprehensive, systematic and actionable way to understand attacker behaviors and techniques with respect to the software supply chain
  ☆96Updated 9 months ago
• nccgroup / RFC-Security-Research
  Paper, data and code from Investigating Potential Security Vulnerability Manifestation through Various Analyses & Inferences Regarding In…
  ☆19Updated 4 years ago
• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆155Updated last year