Alternatives and similar repositories for cvss

Users that are interested in cvss are comparing it to the libraries listed below

• AppThreat / vulnerability-db
  Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.1, purl, and vers…
  ☆128Updated 2 weeks ago
• nilp0inter / cpe
  CPE: Common Platform Enumeration for Python
  ☆96Updated 10 months ago
• olbat / nvdcve
  NVD/CVE as JSON files
  ☆122Updated this week
• Vulnogram / Vulnogram
  Vulnogram is a tool for creating and editing CVE information in CVE JSON format
  ☆198Updated 3 months ago
• cve-search / PyCVESearch
  Python wrapper for the API of cve-search
  ☆126Updated last year
• cve-search / VIA4CVE
  Vulnerability Information Aggregator for CVEs
  ☆123Updated 6 years ago
• joshbressers / cve-analysis
  Tools for conducting analysis of CVE data in Elasticsearch
  ☆74Updated last month
• cve-search / cpe-guesser
  Tool to guess CPE name based on common software name
  ☆101Updated 2 weeks ago
• cve-search / CVE-Search-Docker
  Docker Image for CVE-Search
  ☆115Updated 6 months ago
• pypa / advisory-database
  Advisory database for Python packages published on pypi.org
  ☆302Updated this week
• rsc-dev / pypi_malware
  PyPI malware packages
  ☆58Updated 6 years ago
• stacscan / stacs
  Static Token And Credential Scanner
  ☆96Updated 2 years ago
• RedHatProductSecurity / cvelib
  A Python library and command line interface for CVE Services.
  ☆69Updated last week
• RedHatProductSecurity / cvss-v4-calculator
  CVSS v4.0 calculator
  ☆44Updated 3 months ago
• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆151Updated last year
• CERTCC / SSVC
  Stakeholder-Specific Vulnerability Categorization
  ☆160Updated this week
• RogoLabs / cve.icu
  CVE.ICU code.
  ☆46Updated this week
• pbom-dev / OSCAR
  A comprehensive, systematic and actionable way to understand attacker behaviors and techniques with respect to the software supply chain
  ☆95Updated 6 months ago
• DataDog / malicious-software-packages-dataset
  An open-source dataset of malicious software packages found in the wild, 100% vetted by humans.
  ☆216Updated this week
• vehemont / nvdlib
  A simple wrapper for the National Vulnerability CVE/CPE API
  ☆104Updated 2 weeks ago
• CloudSecurityAlliance / gsd-database
  Global Security Database
  ☆318Updated last year
• IQTLabs / software-supply-chain-compromises
  A dataset of software supply chain compromises. Please help us maintain it!
  ☆130Updated 2 years ago
• vulsio / go-cpe-dictionary
  Build a local copy of CPE(Common Platform Enumeration)
  ☆104Updated this week
• fkie-cad / nvd-json-data-feeds
  Community reconstruction of the legacy JSON NVD Data Feeds. This project uses and redistributes data from the NVD API but is neither endo…
  ☆173Updated this week
• ossf / osv-schema
  Open Source Vulnerability schema.
  ☆206Updated last week
• illikainen / ossaudit
  Audit python packages for known vulnerabilities
  ☆33Updated 3 years ago
• CERTCC / VINCE
  VINCE is the Vulnerability Information and Coordination Environment developed and used by the CERT Coordination Center to improve coordin…
  ☆76Updated last week
• jgamblin / CVElk
  Autoconfigured ELK Stack That Contains All EPSS and NVD CVE Data
  ☆52Updated 2 months ago
• ossf / malicious-packages
  A repository of reports of malicious packages identified in Open Source package repositories, consumable via the Open Source Vulnerabilit…
  ☆326Updated this week
• ossf / security-reviews
  A community collection of security reviews of open source software components.
  ☆95Updated last year