Alternatives and similar repositories for SSVC

Users that are interested in SSVC are comparing it to the libraries listed below

• theparanoids / PrioritizedRiskRemediation
  A Risk-Based Prioritization Taxonomy for prioritizing CVEs (Common Vulnerabilities and Exposures).
  ☆83Updated last year
• t0sche / cvss-bt
  Enriching the NVD CVSS scores to include Temporal & Threat Metrics
  ☆215Updated last week
• cisagov / CSAF
  CISA CSAF Security Advisories
  ☆94Updated this week
• enisaeu / CNW
  Advisories, guidance, best practice documents and more issued by members of the EU CSIRTs network, a network composed of EU Member States…
  ☆95Updated 2 months ago
• anchore / nvd-data-overrides
  ☆48Updated this week
• OWASP / OpenCRE
  ☆138Updated this week
• center-for-threat-informed-defense / mappings-explorer
  Mappings Explorer enables cyber defenders to understand how security controls and capabilities map onto the adversary behaviors catalogue…
  ☆88Updated last week
• oasis-tcs / csaf
  OASIS CSAF TC: Supporting version control for Work Product artifacts developed by members of TC, including prose specifications and secon…
  ☆206Updated last week
• OWASP / www-project-cyber-defense-matrix
  Documentation on the Cyber Defense Matrix
  ☆24Updated 2 years ago
• mitre / saf
  The MITRE Security Automation Framework (SAF) Command Line Interface (CLI) brings together applications, techniques, libraries, and tools…
  ☆171Updated this week
• CloudSecurityAlliance / gsd-tools
  Global Security Database Tools
  ☆43Updated 2 years ago
• Deploying-Securely / DSRAM
  ☆16Updated 2 years ago
• OWASP / www-project-vulnerability-management-guide
  OWASP Foundation Web Respository
  ☆32Updated 3 months ago
• oasis-open / csaf-documentation
  OASIS TC Open Repository: A GitHub repository for management of non-normative information about the work of the CSAF Technical Committee,…
  ☆21Updated 2 months ago
• FIRSTdotorg / epss
  Exploit Prediction Scoring System (EPSS)
  ☆31Updated 3 years ago
• opencybersecurityalliance / casp
  ☆19Updated 6 months ago
• RiskBasedPrioritization / RiskBasedPrioritization.github.io
  ☆20Updated 6 months ago
• iriusrisk / OpenThreatModel
  The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.
  ☆179Updated last month
• elastic / dorothy
  ☆192Updated this week
• ocsf / ocsf-docs
  OCSF Documentation
  ☆152Updated last week
• counteractive / security-controls
  ☆49Updated 2 years ago
• pbom-dev / OSCAR
  A comprehensive, systematic and actionable way to understand attacker behaviors and techniques with respect to the software supply chain
  ☆97Updated 11 months ago
• center-for-threat-informed-defense / attack-workbench-rest-api
  An application allowing users to explore, create, annotate, and share extensions of the MITRE ATT&CK® knowledge base. This repository con…
  ☆53Updated this week
• vulncheck-oss / cli
  VulnCheck's official command line tool
  ☆150Updated 3 weeks ago
• pulsedive / certrss
  ☆121Updated last week
• CERTCC / VINCE
  VINCE is the Vulnerability Information and Coordination Environment developed and used by the CERT Coordination Center to improve coordin…
  ☆89Updated this week
• ossf / wg-vulnerability-disclosures
  The OpenSSF Vulnerability Disclosures Working Group seeks to help improve the overall security of the open source software ecosystem by h…
  ☆210Updated this week
• opencybersecurityalliance / PACE
  Posture Attribute Collection and Evaluation
  ☆23Updated 2 years ago
• Vulnogram / Vulnogram
  Vulnogram is the tool for reserving, managing, and publishing CVEs. Get started at vulnogram.org or deploy Docker edition for full enterp…
  ☆214Updated 2 weeks ago
• adamshostack / DFD3
  ☆89Updated 4 months ago