Alternatives and similar repositories for cwe-tool

Users that are interested in cwe-tool are comparing it to the libraries listed below

• OWASP / cwe-sdk-javascript
  A Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC
  ☆32Updated 5 months ago
• ossf / security-reviews
  A community collection of security reviews of open source software components.
  ☆95Updated last year
• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆145Updated last year
• vfeedio / pyvfeed
  Python API for vFeed Vulnerability & Threat Intelligence Database Enterprise & Pro Editions
  ☆102Updated 2 years ago
• snyk-labs / snync
  Mitigate security concerns of Dependency Confusion supply chain security risks
  ☆47Updated 2 years ago
• OWASP / www-project-integration-standards
  OWASP Foundation Web Respository
  ☆28Updated 10 months ago
• semgrep / semgrep-docs
  Documentation of Semgrep: a fast, open-source, static analysis tool.
  ☆41Updated this week
• apiiro / combobulator
  Dependency Combobulator
  ☆93Updated last year
• DevSlop / pixi-crs
  CI Pipeline with Pixi, the WAF OWASP Core Rule Set and TestCafe tests.
  ☆15Updated 4 years ago
• Whitespots-OU / security-requirements-generator
  A small tool to help developers understand a huge set of security requirements from appsec teams
  ☆45Updated 2 years ago
• AppThreat / vulnerability-db
  Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.1, purl, and vers…
  ☆120Updated last week
• OpenSecuritySummit / oss-website
  The Open Security Summit is focused on the collaboration between, Developers and Application Security
  ☆45Updated 6 months ago
• DefectDojo / defectdojo_api
  Python API library for DefectDojo
  ☆42Updated 2 years ago
• mllamazares / vulncov
  🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.
  ☆39Updated 6 months ago
• stacscan / stacs
  Static Token And Credential Scanner
  ☆96Updated 2 years ago
• OWASP / OpenCRE
  ☆110Updated this week
• meta-fun / awesome-software-supply-chain-security
  Sharing software supply chain security open source projects
  ☆50Updated 2 years ago
• zapbot / zap-mgmt-scripts
  ZAP Management Scripts
  ☆23Updated 2 weeks ago
• tldrrun / tools.tldr.run
  A curated list of security tools for Hackers & Builders!
  ☆100Updated 11 months ago
• OWASP / Cloud-Native-Application-Security-Top-10
  ☆20Updated 6 years ago
• iriusrisk / startleft
  StartLeft is an automation tool for generating Threat Models written in the Open Threat Model (OTM) format from a variety of different so…
  ☆50Updated 2 weeks ago
• CERTCC / VINCE
  VINCE is the Vulnerability Information and Coordination Environment developed and used by the CERT Coordination Center to improve coordin…
  ☆70Updated this week
• OWASP / packman
  A documentation and tracking project with the goal of making package management systems more secure.
  ☆50Updated 4 years ago
• Beyarz / Cve-api
  Unofficial api for cve.mitre.org
  ☆40Updated 3 years ago
• we45 / orchestron-community
  Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…
  ☆31Updated 2 years ago
• mario-platt / ASVS-Agile-Delivery-Guide
  ☆35Updated 4 years ago
• we45 / ZAP-Mini-Workshop
  Interactive IPython Notebook to demonstrate OWASP ZAP's API and Scripting Functions - OWASP ZAP 2.8.0
  ☆41Updated 2 years ago
• IQTLabs / software-supply-chain-compromises
  A dataset of software supply chain compromises. Please help us maintain it!
  ☆129Updated 2 years ago
• OWASP / www-project-vulnerability-management-guide
  OWASP Foundation Web Respository
  ☆31Updated 2 years ago
• PortSwigger / aws-security-checks
  AWS Security Checks
  ☆39Updated 7 years ago