Alternatives and similar repositories for OVAL

Users that are interested in OVAL are comparing it to the libraries listed below

• usnistgov / sctools
  Tools for security content automation, baseline tailoring, and overlay development.
  ☆44Updated 9 months ago
• OVALProject / Language
  The OVAL Language Schemas
  ☆87Updated 8 months ago
• CISecurity / OVALRepo
  ☆276Updated last year
• ComplianceAsCode / ComplianceAsCode.github.io
  A ComplianceAsCode blog
  ☆27Updated last month
• oasis-open / csaf-parser
  OASIS TC Open Repository: CSAF Parser tool for parsing and checking the syntax of the Common Vulnerability Reporting Framework (CVRF) con…
  ☆23Updated 2 years ago
• joval / jOVAL
  An open-source JAXB data model for SCAP specification formats.
  ☆57Updated 2 years ago
• mitre / vulcan
  A web application to streamline the development of STIGs from SRGs
  ☆74Updated 2 months ago
• cve-search / VIA4CVE
  Vulnerability Information Aggregator for CVEs
  ☆120Updated 5 years ago
• OWASP / OdTM
  OWASP Ontology-driven Threat Modelling framework
  ☆37Updated last year
• OVALProject / Test-Content
  A set of OVAL Definitions that provides a simple way to test the capability of OVAL Definition Evaluators.
  ☆26Updated 9 years ago
• usnistgov / BF
  Bugs Framework
  ☆8Updated 2 weeks ago
• CERTCC / SSVC
  Stakeholder-Specific Vulnerability Categorization
  ☆150Updated last week
• ossf / security-reviews
  A community collection of security reviews of open source software components.
  ☆94Updated last year
• CERTCC / VINCE
  VINCE is the Vulnerability Information and Coordination Environment developed and used by the CERT Coordination Center to improve coordin…
  ☆68Updated 3 weeks ago
• RedHatProductSecurity / cvelib
  A Python library and command line interface for CVE Services.
  ☆65Updated 2 weeks ago
• usnistgov / vulntology
  Development of the NIST vulnerability data ontology (Vulntology).
  ☆39Updated this week
• oasis-tcs / csaf
  OASIS CSAF TC: Supporting version control for Work Product artifacts developed by members of TC, including prose specifications and secon…
  ☆173Updated this week
• OWASP / Software-Component-Verification-Standard
  Software Component Verification Standard (SCVS)
  ☆147Updated 2 months ago
• FIRSTdotorg / epss
  Exploit Prediction Scoring System (EPSS)
  ☆26Updated 3 years ago
• CloudSecurityAlliance / gsd-tools
  Global Security Database Tools
  ☆42Updated last year
• Agh42 / oscal4neo4j
  Scripts to import OSCAL example content into the Neo4J graph database
  ☆28Updated 2 years ago
• OWASP / www-project-appsec-pipeline
  OWASP Foundation Web Respository
  ☆10Updated 2 years ago
• iriusrisk / startleft
  StartLeft is an automation tool for generating Threat Models written in the Open Threat Model (OTM) format from a variety of different so…
  ☆50Updated last week
• opencybersecurityalliance / PACE
  Posture Attribute Collection and Evaluation
  ☆23Updated last year
• squinky86 / STIGQter
  Open Source STIG Viewer Reimplementation
  ☆24Updated 2 months ago
• OpenSCAP / scap-workbench
  SCAP Scanner And Tailoring Graphical User Interface
  ☆232Updated last year
• OSSIndex / vulns
  Report missing advisories and corrections on OSS Index
  ☆17Updated 2 years ago
• CERTCC / SBOM
  Examples and proof-of-concept for Software Bill of Materials (SBOM) code & data
  ☆59Updated last year
• RedHatProductSecurity / cvss
  CVSS2/3/4 library with interactive calculator for Python 2 and Python 3
  ☆99Updated last week
• oasis-open / csaf-documentation
  OASIS TC Open Repository: A GitHub repository for management of non-normative information about the work of the CSAF Technical Committee,…
  ☆20Updated 3 months ago