Alternatives and similar repositories for epss

Users that are interested in epss are comparing it to the libraries listed below

• FIRSTdotorg / Vuln4Cast
  A collection of data fetchers, and simple quarterly and yearly CVE forecasting models.
  ☆44Updated 2 months ago
• CERTCC / SSVC
  Stakeholder-Specific Vulnerability Categorization
  ☆167Updated 2 weeks ago
• cisagov / CSAF
  CISA CSAF Security Advisories
  ☆90Updated last week
• mitre / saf
  The MITRE Security Automation Framework (SAF) Command Line Interface (CLI) brings together applications, techniques, libraries, and tools…
  ☆166Updated this week
• oasis-tcs / csaf
  OASIS CSAF TC: Supporting version control for Work Product artifacts developed by members of TC, including prose specifications and secon…
  ☆202Updated last week
• anchore / nvd-data-overrides
  ☆48Updated last week
• FIRSTdotorg / cvss-v4-calculator
  CVSS v4.0 calculator
  ☆37Updated last year
• RedHatProductSecurity / cvelib
  A Python library and command line interface for CVE Services.
  ☆71Updated 2 months ago
• FIRSTdotorg / global-irt
  Global IRT (Incident Response Team) is a project to describe common IRT and abuse contact information
  ☆77Updated 2 years ago
• CloudSecurityAlliance / gsd-tools
  Global Security Database Tools
  ☆43Updated 2 years ago
• OWASP / OpenCRE
  ☆131Updated last week
• RiskBasedPrioritization / RiskBasedPrioritization.github.io
  ☆19Updated 5 months ago
• center-for-threat-informed-defense / attack-workbench-rest-api
  An application allowing users to explore, create, annotate, and share extensions of the MITRE ATT&CK® knowledge base. This repository con…
  ☆52Updated last week
• enisaeu / CNW
  Advisories, guidance, best practice documents and more issued by members of the EU CSIRTs network, a network composed of EU Member States…
  ☆94Updated 3 weeks ago
• oasis-open / cti-stix-validator
  OASIS TC Open Repository: Validator for STIX 2.0 JSON normative requirements and best practices
  ☆59Updated 5 months ago
• ossf / wg-vulnerability-disclosures
  The OpenSSF Vulnerability Disclosures Working Group seeks to help improve the overall security of the open source software ecosystem by h…
  ☆205Updated 2 months ago
• gocsaf / csaf
  Tools to download or provide CSAF (Common Security Advisory Framework) documents.
  ☆56Updated last week
• opencybersecurityalliance / PACE
  Posture Attribute Collection and Evaluation
  ☆24Updated 2 years ago
• theparanoids / PrioritizedRiskRemediation
  A Risk-Based Prioritization Taxonomy for prioritizing CVEs (Common Vulnerabilities and Exposures).
  ☆82Updated last year
• iriusrisk / startleft
  StartLeft is an automation tool for generating Threat Models written in the Open Threat Model (OTM) format from a variety of different so…
  ☆52Updated last month
• JHUAPL / Low-Regret-Methodology
  ☆30Updated 4 years ago
• oasis-tcs / cacao
  OASIS CACAO TC: Official repository for work of the CACAO TC https://github.com/oasis-tcs/cacao
  ☆31Updated last year
• OWASP / www-project-vulnerability-management-guide
  OWASP Foundation Web Respository
  ☆31Updated 2 months ago
• mitre-attack / attack-data-model
  ATT&CK Data Model (ADM): A TypeScript library for structured interaction with MITRE ATT&CK datasets. Uses Zod schemas, TypeScript types, …
  ☆53Updated last week
• opencybersecurityalliance / casp
  ☆19Updated 5 months ago
• CERTCC / VINCE
  VINCE is the Vulnerability Information and Coordination Environment developed and used by the CERT Coordination Center to improve coordin…
  ☆85Updated 3 weeks ago
• owaspsamm / core
  Core model including reused documentation
  ☆100Updated 2 weeks ago
• Vulnogram / Vulnogram
  Vulnogram is the tool for reserving, managing, and publishing CVEs. Get started at vulnogram.org or deploy Docker edition for full enterp…
  ☆212Updated this week
• CVEProject / automation-working-group
  CVE Automation Working Group
  ☆180Updated this week
• ComplianceAsCode / ComplianceAsCode.github.io
  A ComplianceAsCode blog
  ☆30Updated last month