Alternatives and similar repositories for OVAL

Users that are interested in OVAL are comparing it to the libraries listed below

• mitre / saf
  The MITRE Security Automation Framework (SAF) Command Line Interface (CLI) brings together applications, techniques, libraries, and tools…
  ☆166Updated last week
• usnistgov / sctools
  Tools for security content automation, baseline tailoring, and overlay development.
  ☆45Updated last year
• Vulnogram / Vulnogram
  Vulnogram is the tool for reserving, managing, and publishing CVEs. Get started at vulnogram.org or deploy Docker edition for full enterp…
  ☆212Updated this week
• mitre / vulcan
  A web application to streamline the development of STIGs from SRGs
  ☆82Updated 2 weeks ago
• RedHatProductSecurity / cvelib
  A Python library and command line interface for CVE Services.
  ☆71Updated 3 months ago
• mitre / heimdall2
  Heimdall Enterprise Server 2 lets you view, store, and compare automated security control scan results.
  ☆241Updated this week
• CERTCC / SSVC
  Stakeholder-Specific Vulnerability Categorization
  ☆168Updated this week
• CISecurity / OVALRepo
  ☆280Updated 2 years ago
• CERTCC / VINCE
  VINCE is the Vulnerability Information and Coordination Environment developed and used by the CERT Coordination Center to improve coordin…
  ☆87Updated last month
• cairis-platform / cairis
  Computer Aided Integration of Requirements and Information Security - Server
  ☆167Updated this week
• CERTCC / cveClient
  A client and library to cve-services 2.x to provide CVE management for CNA and CERTs
  ☆28Updated 5 months ago
• CycloneDX / bom-examples
  A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc)
  ☆212Updated 2 months ago
• ComplianceAsCode / ComplianceAsCode.github.io
  A ComplianceAsCode blog
  ☆30Updated last month
• oasis-tcs / csaf
  OASIS CSAF TC: Supporting version control for Work Product artifacts developed by members of TC, including prose specifications and secon…
  ☆203Updated 2 weeks ago
• Cingulara / openrmf-docs
  Documentation on the OpenRMF application, including scripts to run the whole stack as well as just infrastructure with documentation on u…
  ☆149Updated last month
• ossf / wg-vulnerability-disclosures
  The OpenSSF Vulnerability Disclosures Working Group seeks to help improve the overall security of the open source software ecosystem by h…
  ☆205Updated 3 months ago
• usnistgov / oscal-deep-diff
  Open Security Controls Assessment Language (OSCAL) Deep Differencing Tool
  ☆38Updated 2 years ago
• OVALProject / Language
  The OVAL Language Schemas
  ☆87Updated last year
• OpenSCAP / scap-workbench
  SCAP Scanner And Tailoring Graphical User Interface
  ☆234Updated last year
• OWASP / www-project-threat-dragon
  OWASP Foundation Threat Dragon Project Web Repository
  ☆86Updated this week
• CloudSecurityAlliance / gsd-tools
  Global Security Database Tools
  ☆43Updated 2 years ago
• FIRSTdotorg / cvss-v4-calculator
  CVSS v4.0 calculator
  ☆37Updated last year
• kannkyo / epss-api
  EPSS(Exploit Prediction Scoring System) API client
  ☆19Updated 2 months ago
• CISecurity / ControlsAssessmentSpecification
  Controls Assessment Specification
  ☆70Updated 9 months ago
• d3fend / d3fend
  Public static website for the D3FEND project. For the D3FEND ontology repo see: https://github.com/d3fend/d3fend-ontology
  ☆90Updated 3 weeks ago
• usnistgov / oscal-tools
  Tools for the OSCAL project
  ☆36Updated 2 years ago
• usnistgov / vulntology
  Development of the NIST vulnerability data ontology (Vulntology).
  ☆43Updated last month
• owaspsamm / core
  Core model including reused documentation
  ☆100Updated 3 weeks ago
• center-for-threat-informed-defense / mappings-explorer
  Mappings Explorer enables cyber defenders to understand how security controls and capabilities map onto the adversary behaviors catalogue…
  ☆85Updated 2 weeks ago
• mitre / emasser
  eMASSer is a command-line interface (CLI) that aims to automate routine business use-cases and provide utility surrounding the Enterprise…
  ☆46Updated 3 weeks ago