Alternatives and similar repositories for OdTM

Users that are interested in OdTM are comparing it to the libraries listed below

• usnistgov / vulntology
  Development of the NIST vulnerability data ontology (Vulntology).
  ☆39Updated 3 weeks ago
• iriusrisk / startleft
  StartLeft is an automation tool for generating Threat Models written in the Open Threat Model (OTM) format from a variety of different so…
  ☆51Updated this week
• d3fend / d3fend-ontology
  This repository holds the necessary content to produce the D3FEND ontology distribution.
  ☆83Updated this week
• cairis-platform / cairis
  Computer Aided Integration of Requirements and Information Security - Server
  ☆164Updated 10 months ago
• sckg / sckg
  Security Control Knowledge Graph
  ☆29Updated last year
• rusakovichma / TicTaaC
  Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …
  ☆65Updated 2 weeks ago
• center-for-threat-informed-defense / mappings-explorer
  Mappings Explorer enables cyber defenders to understand how security controls and capabilities map onto the adversary behaviors catalogue…
  ☆67Updated this week
• CERTCC / SSVC
  Stakeholder-Specific Vulnerability Categorization
  ☆153Updated this week
• idaholab / STIG
  Structured Threat Intelligence Graph
  ☆95Updated 3 months ago
• mitre-atlas / ai-risk-database
  Explore AI Supply Chain Risk with the AI Risk Database
  ☆58Updated last year
• mal-lang / exampleLang
  A MAL language that demonstrates the Maven project structure
  ☆23Updated 3 years ago
• mitre-atlas / atlas-data
  ATLAS tactics, techniques, and case studies data
  ☆76Updated 2 months ago
• CloudSecurityAlliance / gsd-tools
  Global Security Database Tools
  ☆43Updated last year
• OWASP / www-project-vulnerability-management-guide
  OWASP Foundation Web Respository
  ☆31Updated 2 years ago
• d3fend / d3fend
  Public static website for the D3FEND project. For the D3FEND ontology repo see: https://github.com/d3fend/d3fend-ontology
  ☆83Updated 2 months ago
• OWASP / OpenCRE
  ☆116Updated this week
• CERTCC / VINCE
  VINCE is the Vulnerability Information and Coordination Environment developed and used by the CERT Coordination Center to improve coordin…
  ☆71Updated 3 weeks ago
• COVAIL / MITRE_NIST
  A Crowdsourcing Exchange for mapping various sources of security vulnerabilities, exposures, threats, and controls data
  ☆26Updated 6 years ago
• devsecops / raindance
  Project intended to make Attack Maps part of software development by reducing the time it takes to complete them.
  ☆48Updated 8 years ago
• Agh42 / oscal4neo4j
  Scripts to import OSCAL example content into the Neo4J graph database
  ☆28Updated 2 years ago
• OWASP / Software-Component-Verification-Standard
  Software Component Verification Standard (SCVS)
  ☆148Updated 3 months ago
• CERTCC / SBOM
  Examples and proof-of-concept for Software Bill of Materials (SBOM) code & data
  ☆61Updated last year
• oasis-open / cti-stix-generator
  OASIS Cyber Threat Intelligence (CTI) TC: A tool for generating STIX content for prototyping and testing. https://github.com/oasis-open/c…
  ☆41Updated last year
• ossf / security-reviews
  A community collection of security reviews of open source software components.
  ☆95Updated last year
• OVAL-Community / OVAL
  Official repository for the Open Vulnerability and Assessment Language
  ☆63Updated last month
• OWASP / threat-dragon-core
  OWASP Threat Dragon core files
  ☆28Updated 4 years ago
• pbom-dev / OSCAR
  A comprehensive, systematic and actionable way to understand attacker behaviors and techniques with respect to the software supply chain
  ☆96Updated 5 months ago
• owaspsamm / core
  Core model including reused documentation
  ☆98Updated last month
• opencybersecurityalliance / PACE
  Posture Attribute Collection and Evaluation
  ☆23Updated 2 years ago
• redshiftzero / awesome-threat-modeling
  a curated list of useful threat modeling resources
  ☆137Updated last year