Alternatives and similar repositories for www-project-benchmark

Users that are interested in www-project-benchmark are comparing it to the libraries listed below

• google / oss-fuzz-vulns
  OSS-Fuzz vulnerabilities for OSV.
  ☆156Updated this week
• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆144Updated last year
• microsoft / codeql-container
  Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.
  ☆118Updated last year
• githubuniverseworkshops / codeql
  CodeQL workshops for GitHub Universe
  ☆96Updated 2 years ago
• SAP / risk-explorer-for-software-supply-chains
  A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…
  ☆75Updated last month
• RedHatProductSecurity / cvss
  CVSS2/3/4 library with interactive calculator for Python 2 and Python 3
  ☆99Updated last week
• OWASP / cwe-tool
  A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.
  ☆57Updated this week
• too4words / securibench-micro
  Securibench Micro is a benchmark for static analysis tools for security.
  ☆26Updated 6 years ago
• GitHubSecurityLab / gh-mrva
  Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)
  ☆58Updated last month
• microsoft / sarif-vscode-extension
  SARIF Microsoft Visual Studio Code extension
  ☆115Updated last month
• spoofzu / jvmxray
  Externalize Java application access to protected resources as log messages.
  ☆41Updated last month
• trailofbits / testing-handbook
  Trail of Bits Testing Handbook
  ☆74Updated last week
• DataDog / malicious-software-packages-dataset
  An open-source dataset of malicious software packages found in the wild, 100% vetted by humans.
  ☆206Updated this week
• pbom-dev / OSCAR
  A comprehensive, systematic and actionable way to understand attacker behaviors and techniques with respect to the software supply chain
  ☆94Updated 3 months ago
• advanced-security / custom-codeql-bundle
  An example repository that demonstrates how the build custom CodeQL bundles that include query customizations through the `Customizations…
  ☆25Updated 2 years ago
• SAP / project-kb
  Home page of project "KB"
  ☆126Updated 2 months ago
• GitHubSecurityLab / CodeQL-Community-Packs
  Collection of community-driven CodeQL query, library and extension packs
  ☆160Updated 2 weeks ago
• lyvd / bandit4mal
  A fork of Bandit tool with patterns to identifying malicious python code.
  ☆26Updated 2 years ago
• elttam / semgrep-rules
  ☆194Updated 7 months ago
• semgrep / semgrep-docs
  Documentation of Semgrep: a fast, open-source, static analysis tool.
  ☆41Updated this week
• facebook / sapp
  Post Processor for Facebook Static Analysis Tools.
  ☆141Updated this week
• jgamblin / monthlyCVEStats
  Monthly CVE Stats
  ☆42Updated last month
• ossf / security-reviews
  A community collection of security reviews of open source software components.
  ☆94Updated last year
• cve-search / PyCVESearch
  Python wrapper for the API of cve-search
  ☆122Updated last year
• felixgr / pytaint
  ☆34Updated 11 years ago
• joshbressers / cve-analysis
  Tools for conducting analysis of CVE data in Elasticsearch
  ☆74Updated 2 weeks ago
• AppThreat / vulnerability-db
  Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.1, purl, and vers…
  ☆119Updated last week
• setu1421 / SecretBench
  SecretBench is a dataset consisting of different secret types collected from public open-source repositories.
  ☆32Updated 11 months ago
• olbat / nvdcve
  NVD/CVE as JSON files
  ☆118Updated this week
• Semmle / SecurityQueries
  Deprecated: Please visit https://github.com/github/codeql instead.
  ☆81Updated 3 years ago