Alternatives and similar repositories for www-project-benchmark

Users that are interested in www-project-benchmark are comparing it to the libraries listed below

• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆155Updated last year
• microsoft / codeql-container
  Prepackaged and precompiled github codeql container for rapid analysis, deployment and development.
  ☆120Updated 2 years ago
• facebook / sapp
  Post Processor for Facebook Static Analysis Tools.
  ☆141Updated last week
• SAP / risk-explorer-for-software-supply-chains
  A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…
  ☆79Updated last week
• google / oss-fuzz-vulns
  OSS-Fuzz vulnerabilities for OSV.
  ☆166Updated last week
• microsoft / sarif-vscode-extension
  SARIF Microsoft Visual Studio Code extension
  ☆122Updated last week
• microsoft / sarif-python-om
  Python classes for the SARIF object model
  ☆44Updated last year
• ossf / osv-schema
  Open Source Vulnerability schema.
  ☆215Updated last week
• SAP / project-kb
  Home page of project "KB"
  ☆130Updated 8 months ago
• CloudSecurityAlliance / gsd-database
  Global Security Database
  ☆315Updated last year
• IQTLabs / software-supply-chain-compromises
  A dataset of software supply chain compromises. Please help us maintain it!
  ☆130Updated 3 years ago
• microsoft / sarif-tutorials
  User-friendly documentation for the SARIF file format.
  ☆329Updated last year
• too4words / securibench-micro
  Securibench Micro is a benchmark for static analysis tools for security.
  ☆26Updated 7 years ago
• usnistgov / ai-bugfinder-testbed
  A static analyzer powered by AI
  ☆22Updated last year
• RedHatProductSecurity / cvss
  CVSS2/3/4 library with interactive calculator for Python 2 and Python 3
  ☆110Updated 3 months ago
• pypa / advisory-database
  Advisory database for Python packages published on pypi.org
  ☆310Updated last week
• CycloneDX / bom-examples
  A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc)
  ☆210Updated last month
• magnologan / awesome-sca
  A comprehensive list of software composition analysis tools.
  ☆156Updated last month
• DataDog / malicious-software-packages-dataset
  An open-source dataset of malicious software packages found in the wild, 100% vetted by humans.
  ☆255Updated last week
• AppThreat / vulnerability-db
  Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.1, purl, and vers…
  ☆131Updated this week
• cve-search / CVE-Search-Docker
  Docker Image for CVE-Search
  ☆117Updated 9 months ago
• microsoft / OSSGadget
  Collection of tools for analyzing open source packages.
  ☆351Updated 3 months ago
• OWASP / cwe-tool
  A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.
  ☆61Updated 6 months ago
• olbat / nvdcve
  NVD/CVE as JSON files
  ☆122Updated this week
• ajinabraham / libsast
  Generic SAST Library
  ☆132Updated 5 months ago
• OWASP / Software-Component-Verification-Standard
  Software Component Verification Standard (SCVS)
  ☆150Updated 7 months ago
• find-sec-bugs / juliet-test-suite
  A collection of test cases in the Java language. It contains examples for 112 different CWEs.
  ☆57Updated 4 years ago
• Fraunhofer-AISEC / codyze
  Codyze is a static analyzer for Java, C, C++ based on code property graphs
  ☆89Updated 10 months ago
• oasis-tcs / sarif-spec
  OASIS SARIF TC: Repository for development of the draft standard, where requests for modification should be made via Github Issues
  ☆186Updated last week
• CERTCC / SBOM
  Examples and proof-of-concept for Software Bill of Materials (SBOM) code & data
  ☆65Updated last year