Alternatives and similar repositories for OVAL

Users that are interested in OVAL are comparing it to the libraries listed below

• mitre / saf
  The MITRE Security Automation Framework (SAF) Command Line Interface (CLI) brings together applications, techniques, libraries, and tools…
  ☆162Updated last week
• usnistgov / sctools
  Tools for security content automation, baseline tailoring, and overlay development.
  ☆44Updated last year
• CERTCC / SSVC
  Stakeholder-Specific Vulnerability Categorization
  ☆160Updated this week
• CISecurity / OVALRepo
  ☆282Updated 2 years ago
• Vulnogram / Vulnogram
  Vulnogram is a tool for creating and editing CVE information in CVE JSON format
  ☆198Updated 3 months ago
• usnistgov / oscal-deep-diff
  Open Security Controls Assessment Language (OSCAL) Deep Differencing Tool
  ☆37Updated 2 years ago
• CERTCC / VINCE
  VINCE is the Vulnerability Information and Coordination Environment developed and used by the CERT Coordination Center to improve coordin…
  ☆76Updated last week
• oasis-tcs / csaf
  OASIS CSAF TC: Supporting version control for Work Product artifacts developed by members of TC, including prose specifications and secon…
  ☆185Updated this week
• mitre / heimdall2
  Heimdall Enterprise Server 2 lets you view, store, and compare automated security control scan results.
  ☆235Updated this week
• OVALProject / Language
  The OVAL Language Schemas
  ☆87Updated 11 months ago
• mitre / vulcan
  A web application to streamline the development of STIGs from SRGs
  ☆78Updated last week
• opencybersecurityalliance / documentation
  OCA-wide documentation shared by all sub-projects and repositories
  ☆33Updated 9 months ago
• ComplianceAsCode / ComplianceAsCode.github.io
  A ComplianceAsCode blog
  ☆28Updated last month
• CycloneDX / bom-examples
  A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc)
  ☆200Updated 4 months ago
• RedHatProductSecurity / cvelib
  A Python library and command line interface for CVE Services.
  ☆69Updated 2 weeks ago
• FIRSTdotorg / epss
  Exploit Prediction Scoring System (EPSS)
  ☆30Updated 3 years ago
• CVEProject / automation-working-group
  CVE Automation Working Group
  ☆173Updated last week
• OpenSCAP / scap-workbench
  SCAP Scanner And Tailoring Graphical User Interface
  ☆235Updated last year
• d3fend / d3fend
  Public static website for the D3FEND project. For the D3FEND ontology repo see: https://github.com/d3fend/d3fend-ontology
  ☆86Updated 3 weeks ago
• CISecurity / ControlsAssessmentSpecification
  Controls Assessment Specification
  ☆70Updated 4 months ago
• cisagov / CSAF
  CISA CSAF Security Advisories
  ☆82Updated this week
• oasis-open / cti-stix-common-objects
  OASIS Cyber Threat Intelligence (CTI) TC: A repository for commonly used STIX objects in order to avoid needless duplication. https://gi…
  ☆94Updated 2 months ago
• Agh42 / oscal4neo4j
  Scripts to import OSCAL example content into the Neo4J graph database
  ☆28Updated 2 years ago
• CERTCC / SBOM
  Examples and proof-of-concept for Software Bill of Materials (SBOM) code & data
  ☆65Updated last year
• ossf / wg-vulnerability-disclosures
  The OpenSSF Vulnerability Disclosures Working Group seeks to help improve the overall security of the open source software ecosystem by h…
  ☆195Updated 3 weeks ago
• CloudSecurityAlliance / gsd-tools
  Global Security Database Tools
  ☆43Updated last year
• Cingulara / openrmf-docs
  Documentation on the OpenRMF application, including scripts to run the whole stack as well as just infrastructure with documentation on u…
  ☆144Updated 2 weeks ago
• usnistgov / oscal-tools
  Tools for the OSCAL project
  ☆37Updated 2 years ago
• brian-ruf / OSCAL-GUI
  Joint NIST/FedRAMP tool to interact with OSCAL files via a browser-based GUI
  ☆44Updated 5 years ago
• oasis-open / csaf-parser
  OASIS TC Open Repository: CSAF Parser tool for parsing and checking the syntax of the Common Vulnerability Reporting Framework (CVRF) con…
  ☆23Updated 3 years ago