Alternatives and similar repositories for CVRF-CSAF-Converter:

Users that are interested in CVRF-CSAF-Converter are comparing it to the libraries listed below

• sbomtools / apt2sbom
  apt2sbom python package generates SPDX or CycloneDX files from Ubuntu APT and Python packaging information
  ☆22Updated 3 years ago
• secvisogram / secvisogram
  Secvisogram is a web tool for creating and editing security advisories in the CSAF 2.0 format
  ☆37Updated this week
• philips-software / license-scanner
  Service to scan licenses from source code
  ☆12Updated last year
• FIRSTdotorg / epss
  Exploit Prediction Scoring System (EPSS)
  ☆25Updated 2 years ago
• gocsaf / csaf
  Tools to download or provide CSAF (Common Security Advisory Framework) documents.
  ☆42Updated this week
• opencybersecurityalliance / PACE
  Posture Attribute Collection and Evaluation
  ☆23Updated last year
• opencybersecurityalliance / kestrel-jupyter
  Kestrel Jupyter Notebook Kernel
  ☆9Updated last year
• OSSIndex / vulns
  Report missing advisories and corrections on OSS Index
  ☆17Updated 2 years ago
• chainguard-dev / bom-shelter
  A place to systematically store software bill of materials (SBOM) documents.
  ☆44Updated last year
• CERTCC / VINCE
  VINCE is the Vulnerability Information and Coordination Environment developed and used by the CERT Coordination Center to improve coordin…
  ☆63Updated this week
• usnistgov / swid-tools
  ☆13Updated 5 months ago
• RedHatProductSecurity / advisory-parser
  A library for parsing security advisories
  ☆13Updated 6 months ago
• jgamblin / CISA_Enrichment
  CISA Known Exploited Vulnerabilities Catalog Enrichment
  ☆18Updated 9 months ago
• D4-project / architecture
  Architecture - design and implementation of the D4 project architecture
  ☆16Updated 3 years ago
• anchore / vulnerability-match-labels
  Labeled vulnerability-package match pairs used as ground truth to evaluate vulnerability scanners
  ☆11Updated 3 weeks ago
• duo-labs / narrow
  Low-effort reachability analysis for third-party code vulnerabilities.
  ☆20Updated last year
• CloudSecurityAlliance / gsd-tools
  Global Security Database Tools
  ☆42Updated last year
• opencybersecurityalliance / firepit
  Firepit - STIX Columnar Storage
  ☆16Updated 9 months ago
• oasis-tcs / openeox
  OASIS OpenEoX TC: The purpose of this repository is to support version control for Work Product artifacts developed by members of the OAS…
  ☆15Updated last week
• chainguard-dev / self-attestation
  Markdown Version of the DHS/CISA Secure Software Development Self Attestation Form.
  ☆21Updated last year
• MISP / misp-guard
  misp-guard is a mitmproxy addon that inspects and blocks outgoing events to external MISP instances via sync mechanisms (pull/push) based…
  ☆14Updated last month
• OpenEoX / openeox
  This project aims to standardize the representation and management of EOL and EOS product information across the industry.
  ☆27Updated last year
• BSI-Bund / secvisogram
  Secvisogram is a web tool for creating and editing security advisories in the CSAF 2.0 format
  ☆21Updated 2 weeks ago
• madpah / vexy
  Generate VEX (Vulnerability Exploitability Exchange) CycloneDX documents
  ☆20Updated 2 months ago
• ossf / Project-Security-Metrics
  Collect, curate, and communicate relevant security metrics for open source projects.
  ☆63Updated last year
• CyCat-project / cycat-service
  CyCAT.org API back-end server including crawlers
  ☆29Updated 2 years ago
• DevoInc / sightingdb
  Sighting DB is designed to scale writing and reading a count of attributes, tracking when if was first and last seen
  ☆16Updated 11 months ago
• oasis-open / cti-sep-repository
  OASIS TC Open Repository: STIX Enhancement Proposals (SEPs) https://github.com/oasis-open/cti-sep-repository
  ☆16Updated last year
• anthonyharrison / sbomdiff
  This tool compares two Software Bill of Materials (SBOMs) and reports the differences.
  ☆31Updated 5 months ago
• interlynk-io / sbomex
  Find & pull public SBOMs
  ☆17Updated 7 months ago