Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.2, purl, and vers.
☆136Feb 23, 2026Updated last week
Alternatives and similar repositories for vulnerability-db
Users that are interested in vulnerability-db are comparing it to the libraries listed below
Sorting:
- Modular framework for file information extraction and dependency analysis to generate accurate SBOMs☆39Updated this week
- OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for …☆1,211Jan 23, 2026Updated last month
- PURL to CPE Relationship mapping project.☆111Updated this week
- A tool which tries to map CVEs from NVD to packages in supported ecosystems (Maven, NPM, PyPI).☆12Jul 12, 2025Updated 7 months ago
- Create machine images containing the Nessus vulnerability scanner☆13Feb 24, 2026Updated last week
- ☆192Feb 9, 2026Updated 3 weeks ago
- Tool for collecting vulnerability data from various sources (used to build the grype database)☆114Updated this week
- CVE Vulnerability scanner of your software bill of materials (SBOM). ASCII text input.☆17Oct 26, 2020Updated 5 years ago
- Tools to create and deploy a database of software packages metadata, origin, dependencies, and license keyed by PURLs (Package URLs). Sup…☆60Updated this week
- CVE querying library and utility that uses a local store syncing directly to the National Vulnerability Database☆24Jun 29, 2023Updated 2 years ago
- ☆10May 12, 2022Updated 3 years ago
- This is a mapping of CPEs to package urls created by using VulnerableCode's data☆10Aug 14, 2020Updated 5 years ago
- Vulnerability management tool that provides Buildroot SBOM generation and CVE Analysis of target images.☆11Jan 2, 2026Updated 2 months ago
- Like dataclasses but for config.☆10Jan 13, 2025Updated last year
- Active Response plugin. Osquery to execute wazuh/ossec active response plugins. You can write your own plugins, easy to plug☆11Jun 20, 2020Updated 5 years ago
- A Yocto meta-layer for generating CycloneDX SBOMs☆23Feb 23, 2026Updated last week
- The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 350 common, vulnera…☆1,637Updated this week
- Tool to guess CPE name based on common software name☆117Feb 11, 2026Updated 3 weeks ago
- Vulnogram is the tool for reserving, managing, and publishing CVEs. Get started at vulnogram.org or deploy Docker edition for full enterp…☆214Updated this week
- ☆62Updated this week
- A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sp…☆648Updated this week
- Feed parsing for language package manager updates☆82Dec 4, 2024Updated last year
- ☆12Aug 10, 2019Updated 6 years ago
- The Keep It Simple Software Bill of Material☆11Jan 31, 2022Updated 4 years ago
- ☆15Feb 24, 2026Updated last week
- Linux agent used to submit realtime SBOMs and dependency usage information to EdgeBit☆15Jan 24, 2025Updated last year
- A configurable and flexible admission controller toolkit for Kubernetes built in Go and extensible with Go.☆13Sep 29, 2023Updated 2 years ago
- ScanCode.io is a server to script and automate software composition analysis with pipelines. This project is sponsored by the European Co…☆182Updated this week
- Creates CycloneDX Bill of Materials (BOM) for your projects from source and container images. Supports many languages and package manager…☆908Updated this week
- blint is a Binary Linter that checks the security properties and capabilities of your executables. It can also generate a Software Bill-o…☆433Feb 5, 2026Updated 3 weeks ago
- A framework for the automatic generation of Intelligent-Interaction honeypots using OpenWrt-based firmware.☆11Jun 11, 2022Updated 3 years ago
- Certbot container that stores its configuration in an AWS S3 bucket☆15Updated this week
- Basic c2-matrix analysis enviroment using Suricata + Wazuh + Elastic stack☆12Apr 18, 2020Updated 5 years ago
- A Python-based client for the Cisco openVuln API☆38Nov 9, 2025Updated 3 months ago
- Training scenarios for cyber ranges☆15Apr 24, 2020Updated 5 years ago
- Tools to add packaging metadata to ELF files☆22Feb 6, 2026Updated 3 weeks ago
- Ansible role for security standards compliance☆13Mar 6, 2019Updated 6 years ago
- CLI Search for Security Operators of MITRE ATT&CK URLs☆17Jan 5, 2023Updated 3 years ago
- Source for official CVE Program policy documents.☆18Jan 28, 2026Updated last month