OVAL-Community / OVAL

Related projects ⓘ

Alternatives and complementary repositories for OVAL

• OVALProject / Language
  The OVAL Language Schemas
  ☆87Updated last month
• RedHatProductSecurity / cvelib
  A Python library and command line interface for CVE Services.
  ☆58Updated 3 weeks ago
• docker-archive / oscalkit
  NIST OSCAL SDK and CLI
  ☆36Updated 4 years ago
• FIRSTdotorg / cvss-v4-calculator
  CVSS v4.0 calculator
  ☆25Updated 3 months ago
• usnistgov / sctools
  Tools for security content automation, baseline tailoring, and overlay development.
  ☆42Updated 2 months ago
• Threagile / run-threagile-action
  GitHub action to run Threagile, the agile threat modeling toolkit, on a repo's threagile.yaml file
  ☆13Updated 6 months ago
• ComplianceAsCode / ComplianceAsCode.github.io
  A ComplianceAsCode blog
  ☆25Updated last week
• oasis-open / csaf-documentation
  OASIS TC Open Repository: A GitHub repository for management of non-normative information about the work of the CSAF Technical Committee,…
  ☆19Updated this week
• FIRSTdotorg / epss
  Exploit Prediction Scoring System (EPSS)
  ☆23Updated 2 years ago
• OSSIndex / vulns
  Report missing advisories and corrections on OSS Index
  ☆17Updated last year
• ComplianceAsCode / oscal
  OSCAL SSP content for technologies shipped by Red Hat
  ☆15Updated last year
• OWASP / cwe-tool
  A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.
  ☆55Updated 2 months ago
• usnistgov / BF
  Bugs Framework
  ☆7Updated this week
• chainguard-dev / self-attestation
  Markdown Version of the DHS/CISA Secure Software Development Self Attestation Form.
  ☆21Updated last year
• swagitda / security-decision-trees-graphviz
  Decision trees generated via Graphviz to inform pragmatic threat modelling.
  ☆10Updated 3 years ago
• matthiasrohr / OTMT
  Open Threat Modeling Template
  ☆48Updated 4 months ago
• CloudSecurityAlliance / gsd-tools
  Global Security Database Tools
  ☆41Updated 11 months ago
• Agh42 / oscal4neo4j
  Scripts to import OSCAL example content into the Neo4J graph database
  ☆27Updated last year
• GSA / oscal-ssp-to-word
  ☆16Updated 3 years ago
• secvisogram / secvisogram
  Secvisogram is a web tool for creating and editing security advisories in the CSAF 2.0 format
  ☆33Updated last week
• OVALProject / Test-Content
  A set of OVAL Definitions that provides a simple way to test the capability of OVAL Definition Evaluators.
  ☆26Updated 8 years ago
• CERTCC / VINCE
  VINCE is the Vulnerability Information and Coordination Environment developed and used by the CERT Coordination Center to improve coordin…
  ☆59Updated 3 weeks ago
• RedHatGov / ocdb
  OpenControl Database
  ☆11Updated last year
• usnistgov / oscal-deep-diff
  Open Security Controls Assessment Language (OSCAL) Deep Differencing Tool
  ☆29Updated last year
• opencybersecurityalliance / kestrel-jupyter
  Kestrel Jupyter Notebook Kernel
  ☆9Updated last year
• OWASP / www-project-vulnerability-management-guide
  OWASP Foundation Web Respository
  ☆27Updated last year
• ptdropper / CVE-Scanner-for-your-SW-BOM
  CVE Vulnerability scanner of your software bill of materials (SBOM). ASCII text input.
  ☆17Updated 4 years ago
• OWASP / OdTM
  OWASP Ontology-driven Threat Modelling framework
  ☆36Updated last year
• OWASP / www-project-appsec-pipeline
  OWASP Foundation Web Respository
  ☆10Updated last year
• usnistgov / liboscal-java
  A Java library to support processing OSCAL content
  ☆30Updated 5 months ago