Alternatives and similar repositories for cve-documents

Users that are interested in cve-documents are comparing it to the libraries listed below

• swagitda / security-decision-trees-graphviz
  Decision trees generated via Graphviz to inform pragmatic threat modelling.
  ☆11Updated 4 years ago
• ossf / wg-vulnerability-disclosures
  The OpenSSF Vulnerability Disclosures Working Group seeks to help improve the overall security of the open source software ecosystem by h…
  ☆200Updated last week
• ossf / oss-vulnerability-guide
  A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and disc…
  ☆129Updated 8 months ago
• ossf / wg-endusers
  OpenSSF Endusers Working Group
  ☆28Updated last year
• FIRSTdotorg / epss
  Exploit Prediction Scoring System (EPSS)
  ☆30Updated 3 years ago
• docker-archive / oscalkit
  NIST OSCAL SDK and CLI
  ☆38Updated 5 years ago
• ossf / tac
  Technical Advisory Council
  ☆131Updated this week
• CrowdStrike / falcon-integration-gateway
  Falcon Integration Gateway (FIG)
  ☆20Updated last month
• googleworkspace / workspace-guardrails-ps-ca
  ☆20Updated 2 years ago
• ossf / Project-Security-Metrics
  Collect, curate, and communicate relevant security metrics for open source projects.
  ☆63Updated last year
• cisagov / certboto-docker
  Certbot container that stores its configuration in an AWS S3 bucket
  ☆15Updated last week
• GSA / security-benchmarks
  GSA Security Benchmarks and Tools
  ☆21Updated 6 years ago
• chainguard-dev / self-attestation
  Markdown Version of the DHS/CISA Secure Software Development Self Attestation Form.
  ☆21Updated 2 years ago
• RedHatProductSecurity / cvelib
  A Python library and command line interface for CVE Services.
  ☆69Updated this week
• FIRSTdotorg / global-irt
  Global IRT (Incident Response Team) is a project to describe common IRT and abuse contact information
  ☆74Updated last year
• swinslow / npm-spdx
  Golang tool to pull and summarize NPM license info
  ☆13Updated 2 years ago
• OWASP / OpenCRE
  ☆122Updated 2 weeks ago
• crtsh / ocsp_monitor
  OCSP Responder monitor
  ☆36Updated last year
• letsencrypt / dns-lots-of-lookups
  dnslol is a command line tool for performing lots of DNS lookups.
  ☆56Updated 3 years ago
• ComplianceAsCode / oscal
  OSCAL SSP content for technologies shipped by Red Hat
  ☆15Updated 2 years ago
• OSSIndex / vulns
  Report missing advisories and corrections on OSS Index
  ☆17Updated 2 years ago
• CVEProject / cve-website
  The CVE.ORG website
  ☆88Updated this week
• slsa-framework / github-actions-demo
  Proof-of-concept SLSA provenance generator for GitHub Actions
  ☆100Updated 2 years ago
• kaakaww / hawkscan-examples
  📖 A repo of configuration examples for StackHawk's Hawkscan!
  ☆17Updated 3 weeks ago
• CVEProject / cve-services
  This repo contains the source for the CVE Services API.
  ☆208Updated last week
• ossf / foundation
  OpenSSF Governance and Legal Docs
  ☆72Updated 3 weeks ago
• fabric8-analytics / cvedb
  CVE database
  ☆21Updated 5 years ago
• disclose / dioterms
  Open-source vulnerability disclosure policy templates.
  ☆68Updated 3 years ago
• mchmarny / disco
  Utility for bulk image, license, package, and vulnerability discovery in containerize workloads on GCP. Includes CLI and Service with cus…
  ☆13Updated last year
• ossf / scorecard-monitor
  Simplify OpenSSF Scorecard tracking in your organization with automated markdown and JSON reports, plus optional GitHub issue alerts
  ☆38Updated 4 months ago