cisagov / vulnrichmentView external linksLinks
A repo to conduct vulnerability enrichment.
☆720Updated this week
Alternatives and similar repositories for vulnrichment
Users that are interested in vulnrichment are comparing it to the libraries listed below
Sorting:
- Stakeholder-Specific Vulnerability Categorization☆171Jan 26, 2026Updated 3 weeks ago
- CISA CSAF Security Advisories☆94Updated this week
- Enriching the NVD CVSS scores to include Temporal & Threat Metrics☆215Updated this week
- Streamline vulnerability patching with CVSS, EPSS, and CISA's Known Exploited Vulnerabilities. Prioritize actions based on real-time thre…☆688Jan 6, 2026Updated last month
- A Risk-Based Prioritization Taxonomy for prioritizing CVEs (Common Vulnerabilities and Exposures).☆83May 3, 2024Updated last year
- Python implementation of Stakeholder-Specific Vulnerability Categorization (SSVC)☆23Jan 21, 2026Updated 3 weeks ago
- Mirror of cisa.gov/kev data files☆68Updated this week
- Advisories, guidance, best practice documents and more issued by members of the EU CSIRTs network, a network composed of EU Member States…☆96Updated this week
- 脆弱性トリアージガイドライン作成の手引き☆30Jan 10, 2025Updated last year
- CVE cache of the official CVE List in CVE JSON 5 format☆2,476Updated this week
- Vulnerability-Lookup facilitates quick correlation of vulnerabilities from various sources, independent of vulnerability IDs, and streaml…☆467Updated this week
- Global Security Database☆318Apr 29, 2024Updated last year
- Modern CLI for exploring vulnerability data with powerful search, filtering, and analysis capabilities.☆2,364Updated this week
- Vulnogram is the tool for reserving, managing, and publishing CVEs. Get started at vulnogram.org or deploy Docker edition for full enterp…☆214Jan 19, 2026Updated 3 weeks ago
- Global Security Database Tools☆43Dec 13, 2023Updated 2 years ago
- A tool to generate datasets and models based on vulnerabilities descriptions from @Vulnerability-Lookup.☆23Updated this week
- Build a local copy of Known Exploited Vulnerabilities Catalog by CISA. Server mode for easy querying.☆23Feb 9, 2026Updated last week
- Vulnerability Intelligence Platform☆2,526Updated this week
- CVE.ICU code.☆50Feb 10, 2026Updated last week
- Global Security Database Project☆28Mar 4, 2023Updated 2 years ago
- A repository of reports of malicious packages identified in Open Source package repositories, consumable via the Open Source Vulnerabilit…☆455Updated this week
- PURL to CPE Relationship mapping project.☆111Updated this week
- This repository is used for the development of the CVE JSON record format. Releases of the CVE JSON record format will also be published …☆390Jan 30, 2026Updated 2 weeks ago
- Community reconstruction of the legacy JSON NVD Data Feeds. This project uses and redistributes data from the NVD API but is neither endo…☆205Updated this week
- A Python library and command line interface for CVE Services.☆71Jan 30, 2026Updated 2 weeks ago
- Scans Software Bill of Materials (SBOMs) for security vulnerabilities☆598Updated this week
- Hourly updated database of exploit and exploitation reports☆259Jan 23, 2025Updated last year
- OpenVEX Specification☆167Jan 16, 2026Updated last month
- OSV-SCALIBR: A library for Software Composition Analysis☆566Updated this week
- CLI tool to validate CVE v5 JSON records.☆13May 14, 2025Updated 9 months ago
- Attack Flow helps executives, SOC managers, and defenders easily understand how attackers compose ATT&CK techniques into attacks by devel…☆713Nov 14, 2025Updated 3 months ago
- Logging Made Easy (LME) is a no cost, open source platform that centralizes log collection, enhances threat detection, and enables real-t…☆1,371Feb 10, 2026Updated last week
- Automated vulnerability discovery and annotation☆68Jul 26, 2024Updated last year
- Ostorlab KEV: One-command to detect most remotely known exploitable vulnerabilities. Sourced from CISA KEV, Google's Tsunami, Ostorlab's …☆602Feb 4, 2026Updated last week
- A web application that assists network defenders, analysts, and researchers in the process of mapping adversary behaviors to the MITRE AT…☆1,207Feb 3, 2026Updated 2 weeks ago
- openrisk is a tool that generates a risk score based on the results of a Nuclei scan.☆181Dec 22, 2025Updated last month
- A package to create HTML MISP reports, including volume of trending events and attributes, evens received from key organisations and targ…☆11Aug 14, 2025Updated 6 months ago
- Build a local copy of CPE(Common Platform Enumeration)☆105Feb 9, 2026Updated last week
- SBOM Explorer - Discover and pull public SBOMs☆20May 23, 2025Updated 8 months ago