CVEProject / automation-working-group
CVE Automation Working Group
☆158Updated last week
Related projects: ⓘ
- This repo contains the source for the CVE Services API.☆144Updated 2 weeks ago
- CVE Project Documentation☆82Updated last month
- A Python library and command line interface for CVE Services.☆54Updated 2 months ago
- Vulnogram is a tool for creating and editing CVE information in CVE JSON format☆158Updated 3 weeks ago
- With the hope that someone finds the data useful, we used to periodically publish an archive of almost all of the non-sensitive vulnerabi…☆87Updated 4 months ago
- This repository is used for the development of the CVE JSON record format. Releases of the CVE JSON record format will also be published …☆245Updated last month
- The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…☆138Updated 6 months ago
- The new CVE website☆66Updated this week
- ☆263Updated last year
- MISP - Malware Information Sharing Platform & Threat Sharing☆35Updated 2 years ago
- OASIS TC Open Repository: A GitHub repository for management of non-normative information about the work of the CSAF Technical Committee,…☆19Updated last month
- Vulnerability Information Aggregator for CVEs☆117Updated 5 years ago
- A community collection of security reviews of open source software components.☆92Updated 6 months ago
- CVSS2/3/4 library with interactive calculator for Python 2 and Python 3☆81Updated this week
- Open Source Vulnerability schema.☆176Updated this week
- Collect, curate, and communicate relevant security metrics for open source projects.☆63Updated 6 months ago
- Exploit Prediction Scoring System (EPSS)☆20Updated 2 years ago
- A dataset of software supply chain compromises. Please help us maintain it!☆126Updated 2 years ago
- The OpenSSF Vulnerability Disclosures Working Group seeks to help improve the overall security of the open source software ecosystem by h…☆177Updated last month
- Software Component Verification Standard (SCVS)☆133Updated 5 months ago
- The OVAL Language Schemas☆87Updated 3 years ago
- IVA is a system to scan for known vulnerabilities in software products installed inside an organization. IVA uses CPE identifiers to sear…☆64Updated 3 years ago
- SWAMP-in-a-Box☆61Updated 3 years ago
- Global IRT (Incident Response Team) is a project to describe common IRT and abuse contact information☆63Updated 9 months ago
- Evaluation Framework for Dependency Analysis (EFDA)☆40Updated 2 years ago
- OASIS TC Open Repository: GitHub Pages site for STIX and TAXII☆93Updated 3 weeks ago
- VINCE is the Vulnerability Information and Coordination Environment developed and used by the CERT Coordination Center to improve coordin…☆53Updated 2 weeks ago
- OASIS CSAF TC: Supporting version control for Work Product artifacts developed by members of TC, including prose specifications and secon…☆142Updated 3 weeks ago
- A utility for validating and parsing Common Platform Enumeration (CPE) v2.2 and v2.3 as originally defined by MITRE and maintained by NIS…☆48Updated this week
- CVSS v4.0 calculator☆21Updated last month