csaf-tools / CVRF-CSAF-Converter

Related projects ⓘ

Alternatives and complementary repositories for CVRF-CSAF-Converter

• sbomtools / apt2sbom
  apt2sbom python package generates SPDX or CycloneDX files from Ubuntu APT and Python packaging information
  ☆22Updated 2 years ago
• secvisogram / secvisogram
  Secvisogram is a web tool for creating and editing security advisories in the CSAF 2.0 format
  ☆33Updated this week
• BSI-Bund / secvisogram
  Secvisogram is a web tool for creating and editing security advisories in the CSAF 2.0 format
  ☆19Updated 2 months ago
• opencybersecurityalliance / PACE
  Posture Attribute Collection and Evaluation
  ☆23Updated last year
• gocsaf / csaf
  Tools to download or provide CSAF (Common Security Advisory Framework) documents.
  ☆40Updated this week
• chainguard-dev / bom-shelter
  A place to systematically store software bill of materials (SBOM) documents.
  ☆44Updated last year
• chainguard-dev / self-attestation
  Markdown Version of the DHS/CISA Secure Software Development Self Attestation Form.
  ☆21Updated last year
• OSSIndex / vulns
  Report missing advisories and corrections on OSS Index
  ☆17Updated last year
• oasis-tcs / openeox
  OASIS OpenEoX TC: The purpose of this repository is to support version control for Work Product artifacts developed by members of the OAS…
  ☆13Updated 3 weeks ago
• philips-software / license-scanner
  Service to scan licenses from source code
  ☆12Updated last year
• opencybersecurityalliance / kestrel-jupyter
  Kestrel Jupyter Notebook Kernel
  ☆9Updated last year
• anchore / vulnerability-match-labels
  Labeled vulnerability-package match pairs used as ground truth to evaluate vulnerability scanners
  ☆12Updated 3 weeks ago
• RedHatProductSecurity / cvelib
  A Python library and command line interface for CVE Services.
  ☆58Updated last week
• FIRSTdotorg / epss
  Exploit Prediction Scoring System (EPSS)
  ☆23Updated 2 years ago
• CERTCC / VINCE
  VINCE is the Vulnerability Information and Coordination Environment developed and used by the CERT Coordination Center to improve coordin…
  ☆59Updated last week
• anchore / nvd-data-overrides
  ☆45Updated this week
• duo-labs / narrow
  Low-effort reachability analysis for third-party code vulnerabilities.
  ☆19Updated last year
• opencybersecurityalliance / firepit
  Firepit - STIX Columnar Storage
  ☆15Updated 5 months ago
• RedHatProductSecurity / advisory-parser
  A library for parsing security advisories
  ☆13Updated 2 months ago
• CloudSecurityAlliance / gsd-tools
  Global Security Database Tools
  ☆41Updated 10 months ago
• interlynk-io / sbomgr
  SBOM Grep - search through SBOMs
  ☆21Updated last month
• interlynk-io / sbomasm
  SBOM Assembler - A tool to edit SBOM or assemble multiple sboms into a single sbom.
  ☆57Updated last week
• oasis-tcs / csaf
  OASIS CSAF TC: Supporting version control for Work Product artifacts developed by members of TC, including prose specifications and secon…
  ☆148Updated this week
• madpah / vexy
  Generate VEX (Vulnerability Exploitability Exchange) CycloneDX documents
  ☆19Updated last year
• interlynk-io / sbomex
  Find & pull public SBOMs
  ☆16Updated 2 months ago
• nyph-infosec / daggerboard
  ☆101Updated last month
• OpenEoX / openeox
  This project aims to standardize the representation and management of EOL and EOS product information across the industry.
  ☆25Updated 8 months ago
• amzn / zeek-plugin-tds
  Zeek network security monitor plugin that enables parsing of the Tabular Data Stream (TDS) protocol
  ☆25Updated 5 months ago
• CycloneDX / transparency-exchange-api
  A standard API specification for exchanging supply chain artifacts and intelligence
  ☆54Updated this week
• omnibor / site
  Website for OmniBOR, reproducible identifiers & fine-grained build dependency tracking for software artifacts.
  ☆21Updated 2 weeks ago