Alternatives and similar repositories for SSVC

Users that are interested in SSVC are comparing it to the libraries listed below

• theparanoids / PrioritizedRiskRemediation
  A Risk-Based Prioritization Taxonomy for prioritizing CVEs (Common Vulnerabilities and Exposures).
  ☆75Updated last year
• t0sche / cvss-bt
  Enriching the NVD CVSS scores to include Temporal & Threat Metrics
  ☆194Updated last week
• cisagov / CSAF
  CISA CSAF Security Advisories
  ☆68Updated this week
• OWASP / OpenCRE
  ☆105Updated 2 weeks ago
• center-for-threat-informed-defense / mappings-explorer
  Mappings Explorer enables cyber defenders to understand how security controls and capabilities map onto the adversary behaviors catalogue…
  ☆62Updated 3 weeks ago
• Deploying-Securely / DSRAM
  ☆16Updated 2 years ago
• anchore / nvd-data-overrides
  ☆47Updated this week
• OWASP / www-project-vulnerability-management-guide
  OWASP Foundation Web Respository
  ☆31Updated 2 years ago
• opencybersecurityalliance / casp
  ☆19Updated last month
• cisagov / kev-data
  Mirror of cisa.gov/kev data files
  ☆46Updated this week
• k-bailey / detection-engineering-maturity-matrix
  ☆94Updated 2 years ago
• FIRSTdotorg / epss
  Exploit Prediction Scoring System (EPSS)
  ☆25Updated 2 years ago
• center-for-threat-informed-defense / insider-threat-ttp-kb
  The principal objective of this project is to develop a knowledge base of the tactics, techniques, and procedures (TTPs) used by insiders…
  ☆143Updated 8 months ago
• COSSAS / SOARCA
  SOARCA - The Open Source CACAO-based Security Orchestrator!
  ☆72Updated this week
• CloudSecurityAlliance / gsd-tools
  Global Security Database Tools
  ☆42Updated last year
• tuckner / automation-capability-matrix
  A tool that allows you to document and assess any security automation in your SOC
  ☆46Updated 6 months ago
• rapticore / ssvc_ore_miner
  SSVC Ore Miner - www.rapticore.com
  ☆9Updated 5 months ago
• ksthk / one
  One Conference 2024
  ☆109Updated 7 months ago
• jshlbrd / detection-engineering-pocket-guide
  pocket guide for core detection engineering concepts
  ☆28Updated 2 years ago
• OWASP / www-project-cyber-defense-matrix
  Documentation on the Cyber Defense Matrix
  ☆24Updated 2 years ago
• luisfontes19 / orgsec-guide
  A comprehensive checklist and guide for organizations looking to implement a robust cybersecurity program
  ☆26Updated last week
• iriusrisk / OpenThreatModel
  The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.
  ☆172Updated 5 months ago
• pbom-dev / OSCAR
  A comprehensive, systematic and actionable way to understand attacker behaviors and techniques with respect to the software supply chain
  ☆93Updated 3 months ago
• enisaeu / CNW
  Advisories, guidance, best practice documents and more issued by members of the EU CSIRTs network, a network composed of EU Member States…
  ☆77Updated last month
• mllamazares / STRIDE-vs-ASVS
  🖇️ STRIDE vs. ASVS equivalence table
  ☆76Updated 8 months ago
• FIRSTdotorg / cvss-v4-calculator
  CVSS v4.0 calculator
  ☆31Updated 8 months ago
• CISecurity / CISControls_OSCAL
  A repository containing OSCAL serializations of the CIS Critical Security Controls
  ☆49Updated last month
• adamshostack / DFD3
  ☆77Updated 6 months ago
• center-for-threat-informed-defense / attack-workbench-rest-api
  An application allowing users to explore, create, annotate, and share extensions of the MITRE ATT&CK® knowledge base. This repository con…
  ☆46Updated last week
• mitre / saf
  The MITRE Security Automation Framework (SAF) Command Line Interface (CLI) brings together applications, techniques, libraries, and tools…
  ☆150Updated this week