Alternatives and similar repositories for vuln-list

Users that are interested in vuln-list are comparing it to the libraries listed below

• aquasecurity / vuln-list-update
  ☆186Updated last week
• facebookincubator / nvdtools
  A set of tools to work with the feeds (vulnerabilities, CPE dictionary etc.) distributed by National Vulnerability Database (NVD)
  ☆467Updated last year
• aquasecurity / trivy-db
  ☆281Updated last week
• CloudSecurityAlliance / gsd-database
  Global Security Database
  ☆314Updated last year
• aquasecurity / fanal
  Static Analysis Library for Containers
  ☆198Updated 2 years ago
• aquasecurity / go-dep-parser
  Dependency Parser for Multiple Programming Languages
  ☆149Updated last year
• Metarget / awesome-cloud-native-security
  awesome resources about cloud native security 🐿
  ☆324Updated last year
• vulsio / go-cve-dictionary
  Build a local copy of CVE (NVD and Japanese JVN). Server mode for easy querying.
  ☆404Updated 3 weeks ago
• olbat / nvdcve
  NVD/CVE as JSON files
  ☆122Updated this week
• vulsio / go-exploitdb
  Tool for searching Exploits from Exploit Databases, etc.
  ☆290Updated last week
• google / vulncode-db
  Vulncode-DB project
  ☆578Updated 3 years ago
• ShiftLeftSecurity / sast-scan
  Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…
  ☆854Updated 2 years ago
• brompwnie / botb
  A container analysis and exploitation tool for pentesters and engineers.
  ☆673Updated 2 years ago
• aquasecurity / defsec
  Trivy's misconfiguration scanning engine
  ☆216Updated 8 months ago
• ossf / osv-schema
  Open Source Vulnerability schema.
  ☆209Updated last week
• cve-search / CVE-Search-Docker
  Docker Image for CVE-Search
  ☆116Updated 7 months ago
• aquasecurity / linux-bench
  Checks whether a Linux server according to security best practices as defined in the CIS Distribution-Independent Linux Benchmark
  ☆177Updated last month
• microsoft / WAFBench
  WAFBench (wb) is a tool to measure the performance of WAF(Web Application Firewall) . It's based on latest code of ab (ApacheBench), and …
  ☆111Updated 3 years ago
• AppThreat / sast-scan
  Fully open-source SAST scanner supporting a range of languages and frameworks. Integrates with major CI pipelines and IDE such as Azure D…
  ☆149Updated 5 years ago
• aquasecurity / harbor-scanner-trivy
  Use Trivy as a plug-in vulnerability scanner in the Harbor registry
  ☆225Updated last year
• vulsio / go-cpe-dictionary
  Build a local copy of CPE(Common Platform Enumeration)
  ☆105Updated 3 weeks ago
• sjvermeu / cvechecker
  Command-line utility to scan the system and report on potential vulnerabilities, based on public CVE data
  ☆268Updated 2 years ago
• aquasecurity / docker-bench
  Checks whether Docker is deployed according to security best practices as defined in the CIS Docker Benchmark
  ☆221Updated 8 months ago
• raesene / kube_security_lab
  ☆263Updated last year
• OWASP-Benchmark / BenchmarkJava
  OWASP Benchmark is a test suite designed to verify the speed and accuracy of software vulnerability detection tools. A fully runnable web…
  ☆742Updated last week
• PaloAltoNetworks / rbac-police
  Evaluate the RBAC permissions of Kubernetes identities through policies written in Rego
  ☆351Updated 6 months ago
• coreruleset / go-ftw
  Web Application Firewall Testing Framework - Go version
  ☆153Updated this week
• falcosecurity / rules
  Falco rule repository
  ☆138Updated this week
• AvalZ / WAF-A-MoLE
  A guided mutation-based fuzzer for ML-based Web Application Firewalls
  ☆193Updated last year
• cncf / cncf-fuzzing
  ✨🔐 CNCF Fuzzers
  ☆125Updated last month