Alternatives and similar repositories for nvd-data-overrides

Users that are interested in nvd-data-overrides are comparing it to the libraries listed below

• CycloneDX / transparency-exchange-api
  A standard API specification for exchanging supply chain artifacts and intelligence
  ☆81Updated 2 weeks ago
• theparanoids / PrioritizedRiskRemediation
  A Risk-Based Prioritization Taxonomy for prioritizing CVEs (Common Vulnerabilities and Exposures).
  ☆77Updated last year
• CERTCC / SSVC
  Stakeholder-Specific Vulnerability Categorization
  ☆153Updated this week
• vishalgarg-sec / Software-Supply-Chain-Security
  A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling,…
  ☆135Updated last year
• nyph-infosec / daggerboard
  ☆100Updated 8 months ago
• anchore / vunnel
  Tool for collecting vulnerability data from various sources (used to build the grype database)
  ☆99Updated this week
• t0sche / cvss-bt
  Enriching the NVD CVSS scores to include Temporal & Threat Metrics
  ☆204Updated this week
• CloudSecurityAlliance / gsd-tools
  Global Security Database Tools
  ☆43Updated last year
• Deploying-Securely / DSRAM
  ☆16Updated 2 years ago
• anchore / cve-data-enrichment
  ☆15Updated this week
• javixeneize / neo4cyclone
  ☆25Updated last year
• eBay / sbom-scorecard
  Generate a score for your sbom to understand if it will actually be useful.
  ☆229Updated 10 months ago
• scanoss / purl2cpe
  PURL to CPE Relationship mapping project.
  ☆91Updated this week
• bullfrogsec / bullfrog
  Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows
  ☆110Updated this week
• OWASP / OpenCRE
  ☆110Updated this week
• pbom-dev / OSCAR
  A comprehensive, systematic and actionable way to understand attacker behaviors and techniques with respect to the software supply chain
  ☆95Updated 4 months ago
• oasis-tcs / csaf
  OASIS CSAF TC: Supporting version control for Work Product artifacts developed by members of TC, including prose specifications and secon…
  ☆174Updated this week
• crashappsec / github-analyzer
  A tool to check the security settings of Github Organizations.
  ☆71Updated 2 years ago
• ossf / wg-vulnerability-disclosures
  The OpenSSF Vulnerability Disclosures Working Group seeks to help improve the overall security of the open source software ecosystem by h…
  ☆191Updated 2 months ago
• snyk / parlay
  Enrich SBOMs with data from third party services
  ☆176Updated 2 months ago
• communitysec / sbom-hall-of-fame
  A place for the InfoSec community to share and celebrate real stories of organizations successfully using SBOMs (and other bills of mater…
  ☆42Updated last year
• openvex / spec
  OpenVEX Specification
  ☆151Updated 2 weeks ago
• ossf / ai-ml-security
  Working Group on Artificial Intelligence and Machine Learning (AI/ML) Security
  ☆80Updated 7 months ago
• cisagov / CSAF
  CISA CSAF Security Advisories
  ☆74Updated this week
• iriusrisk / OpenThreatModel
  The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.
  ☆172Updated 7 months ago
• cisagov / kev-data
  Mirror of cisa.gov/kev data files
  ☆50Updated this week
• ossf / malicious-packages
  A repository of reports of malicious packages identified in Open Source package repositories, consumable via the Open Source Vulnerabilit…
  ☆314Updated this week
• arnepadmos / threats
  An extensive list of resources related to threat modelling. Gotta catch ’em all!
  ☆36Updated 4 months ago
• chainguard-dev / ghscan
  Scan GitHub Actions Workflow logs for IOCs
  ☆15Updated last week
• jgamblin / CVElk
  Autoconfigured ELK Stack That Contains All EPSS and NVD CVE Data
  ☆51Updated this week