Alternatives and similar repositories for cve-data-enrichment:

Users that are interested in cve-data-enrichment are comparing it to the libraries listed below

• anchore / nvd-data-overrides
  ☆47Updated this week
• anchore / yardstick
  Compare vulnerability scanners results (to make them better!)
  ☆16Updated last week
• anchore / vunnel
  Tool for collecting vulnerability data from various sources (used to build the grype database)
  ☆89Updated this week
• meta-fun / awesome-software-supply-chain-security
  Sharing software supply chain security open source projects
  ☆46Updated 2 years ago
• CycloneDX / transparency-exchange-api
  A standard API specification for exchanging supply chain artifacts and intelligence
  ☆74Updated 2 weeks ago
• gborough / roscal
  Open Security Controls Assessment Language Toolbox
  ☆11Updated last week
• Vulnetix / vulnetix
  Automate vulnerability triage which prioritizes remediation over discovery
  ☆16Updated this week
• crashappsec / github-analyzer
  A tool to check the security settings of Github Organizations.
  ☆71Updated last year
• anchore / grype-db
  ☆45Updated this week
• CERTCC / SSVC
  Stakeholder-Specific Vulnerability Categorization
  ☆140Updated this week
• CERTCC / VINCE
  VINCE is the Vulnerability Information and Coordination Environment developed and used by the CERT Coordination Center to improve coordin…
  ☆63Updated last week
• scanoss / purl2cpe
  PURL to CPE Relationship mapping project.
  ☆85Updated this week
• CloudSecurityAlliance / gsd-tools
  Global Security Database Tools
  ☆42Updated last year
• theparanoids / PrioritizedRiskRemediation
  A Risk-Based Prioritization Taxonomy for prioritizing CVEs (Common Vulnerabilities and Exposures).
  ☆73Updated 10 months ago
• duo-labs / narrow
  Low-effort reachability analysis for third-party code vulnerabilities.
  ☆20Updated last year
• openvex / spec
  OpenVEX Specification
  ☆144Updated this week
• Vulnetix / python-ssvc
  Python implementation of Stakeholder-Specific Vulnerability Categorization (SSVC)
  ☆18Updated 3 months ago
• FIRSTdotorg / cvss-v4-calculator
  CVSS v4.0 calculator
  ☆29Updated 7 months ago
• chainguard-dev / vex
  vexctl is a tool to attest VEX impact statements
  ☆44Updated 2 years ago
• chainguard-dev / bom-shelter
  A place to systematically store software bill of materials (SBOM) documents.
  ☆44Updated last year
• marklechner / priscope
  A security tool designed to help review merged code changes to open source maintained repositories via LLM assisted review to safeguard a…
  ☆30Updated 5 months ago
• chainguard-dev / ghscan
  Scan GitHub Actions Workflow logs for IOCs
  ☆10Updated this week
• primeharbor / breaches.cloud
  https://breaches.cloud
  ☆38Updated 5 months ago
• eBay / sbom-scorecard
  Generate a score for your sbom to understand if it will actually be useful.
  ☆227Updated 7 months ago
• Permiso-io-tools / SkyScalpel
  ☆38Updated 4 months ago
• chainguard-dev / bomshell
  An SBOM query language and associated utilities
  ☆54Updated last year
• bomctl / bomctl
  Format agnostic SBOM tooling
  ☆102Updated this week
• cloud-native-security-controls / controls-catalog
  ☆16Updated 10 months ago
• Threagile / run-threagile-action
  GitHub action to run Threagile, the agile threat modeling toolkit, on a repo's threagile.yaml file
  ☆13Updated 10 months ago
• guacsec / guac-visualizer
  Visualizer for GUAC
  ☆28Updated 2 weeks ago