Alternatives and similar repositories for SSVC

Users that are interested in SSVC are comparing it to the libraries listed below

• t0sche / cvss-bt
  Enriching the NVD CVSS scores to include Temporal & Threat Metrics
  ☆207Updated this week
• theparanoids / PrioritizedRiskRemediation
  A Risk-Based Prioritization Taxonomy for prioritizing CVEs (Common Vulnerabilities and Exposures).
  ☆78Updated last year
• cisagov / CSAF
  CISA CSAF Security Advisories
  ☆74Updated this week
• OWASP / OpenCRE
  ☆116Updated this week
• anchore / nvd-data-overrides
  ☆47Updated this week
• center-for-threat-informed-defense / mappings-explorer
  Mappings Explorer enables cyber defenders to understand how security controls and capabilities map onto the adversary behaviors catalogue…
  ☆67Updated this week
• mitre / saf
  The MITRE Security Automation Framework (SAF) Command Line Interface (CLI) brings together applications, techniques, libraries, and tools…
  ☆156Updated this week
• enisaeu / CNW
  Advisories, guidance, best practice documents and more issued by members of the EU CSIRTs network, a network composed of EU Member States…
  ☆83Updated 3 months ago
• OWASP / www-project-cyber-defense-matrix
  Documentation on the Cyber Defense Matrix
  ☆24Updated 2 years ago
• iriusrisk / OpenThreatModel
  The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.
  ☆172Updated 7 months ago
• CloudSecurityAlliance / gsd-tools
  Global Security Database Tools
  ☆43Updated last year
• elastic / dorothy
  Dorothy is a tool to test security monitoring and detection for Okta environments
  ☆183Updated 11 months ago
• pbom-dev / OSCAR
  A comprehensive, systematic and actionable way to understand attacker behaviors and techniques with respect to the software supply chain
  ☆96Updated 5 months ago
• vulncheck-oss / cli
  VulnCheck's official command line tool
  ☆135Updated last week
• cisagov / kev-data
  Mirror of cisa.gov/kev data files
  ☆51Updated this week
• vishalgarg-sec / Software-Supply-Chain-Security
  A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling,…
  ☆136Updated last year
• Toreon / threat-model-playbook
  ☆88Updated 3 years ago
• OWASP / www-project-vulnerability-management-guide
  OWASP Foundation Web Respository
  ☆31Updated 2 years ago
• DataDog / HASH
  HASH (HTTP Agnostic Software Honeypot)
  ☆138Updated last year
• Deploying-Securely / DSRAM
  ☆16Updated 2 years ago
• CISecurity / ControlsAssessmentSpecification
  Controls Assessment Specification
  ☆70Updated 3 months ago
• oasis-tcs / csaf
  OASIS CSAF TC: Supporting version control for Work Product artifacts developed by members of TC, including prose specifications and secon…
  ☆175Updated 2 weeks ago
• d3fend / d3fend
  Public static website for the D3FEND project. For the D3FEND ontology repo see: https://github.com/d3fend/d3fend-ontology
  ☆83Updated 2 months ago
• ocsf / ocsf-docs
  OCSF Documentation
  ☆132Updated 3 weeks ago
• packetchaos / navi
  A Command-line tool which leverages the Tenable Vulnerability Management API to reduce the time it takes to get information that is commo…
  ☆79Updated this week
• RiskBasedPrioritization / RiskBasedPrioritization.github.io
  ☆17Updated this week
• adamshostack / DFD3
  ☆83Updated 8 months ago
• oracuk / oisru
  Repository for the Open Information Security Risk Universe
  ☆64Updated 3 years ago
• owaspsamm / core
  Core model including reused documentation
  ☆98Updated last month
• ksthk / one
  One Conference 2024
  ☆111Updated 9 months ago