Alternatives and similar repositories for cvedb

Users that are interested in cvedb are comparing it to the libraries listed below

• OWASP / Cloud-Native-Application-Security-Top-10
  ☆21Updated 6 years ago
• OSSIndex / vulns
  Report missing advisories and corrections on OSS Index
  ☆17Updated 2 years ago
• zaproxy / zest
  ☆107Updated 2 weeks ago
• ttarvis / glasgo
  A Security Scanner for Go
  ☆26Updated 6 years ago
• zapbot / zap-mgmt-scripts
  ZAP Management Scripts
  ☆23Updated last week
• vmware-archive / kube-recon
  Reconnaissance test in Kubernetes clusters
  ☆21Updated 6 years ago
• redteam-project / red-container
  Containerized pentesting tools
  ☆45Updated 3 years ago
• google / security-crawl-maze
  Security Crawl Maze is a comprehensive testbed for web security crawlers. It contains pages representing many ways in which one can link …
  ☆162Updated last year
• ossf / Project-Security-Metrics
  Collect, curate, and communicate relevant security metrics for open source projects.
  ☆63Updated last year
• google / gke-auditor
  ☆74Updated 4 years ago
• semgrep / semgrep-docs
  Documentation of Semgrep: a fast, open-source, static analysis tool.
  ☆42Updated this week
• thought-machine / dracon
  Security scanning & static analysis tool
  ☆94Updated 11 months ago
• ossf / security-reviews
  A community collection of security reviews of open source software components.
  ☆95Updated last year
• danielfett / tlsprofiler
  Compares the TLS configuration of a web server to the Mozilla TLS Profiles
  ☆25Updated last year
• chainguard-dev / bom-shelter
  A place to systematically store software bill of materials (SBOM) documents.
  ☆46Updated 2 years ago
• DevSlop / pixi-crs
  CI Pipeline with Pixi, the WAF OWASP Core Rule Set and TestCafe tests.
  ☆15Updated 4 years ago
• swagitda / security-decision-trees-graphviz
  Decision trees generated via Graphviz to inform pragmatic threat modelling.
  ☆11Updated 4 years ago
• appsecpipeline / gasp-docker
  Simple implementation of an AppSec Pipeline using the Gasp library
  ☆13Updated 6 years ago
• CERTCC / VINCE
  VINCE is the Vulnerability Information and Coordination Environment developed and used by the CERT Coordination Center to improve coordin…
  ☆77Updated last week
• EdOverflow / security-template
  A static website template for security pages.
  ☆53Updated 2 months ago
• RUB-NDS / PrOfESSOS
  PrOfESSOS is our open source implementation for fully automated Evaluation-as-a-Service for SSO. PrOfESSOS introduces a generic approach …
  ☆28Updated 2 years ago
• eBay / DASTProxy
  ☆58Updated 8 months ago
• xfhg / intercept
  INTERCEPT / Policy as Code Auditing & Compliance
  ☆86Updated 3 months ago
• philips-software / license-scanner
  Service to scan licenses from source code
  ☆12Updated 2 years ago
• docker-archive / oscalkit
  NIST OSCAL SDK and CLI
  ☆38Updated 5 years ago
• AppThreat / vulnerability-db
  Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.1, purl, and vers…
  ☆129Updated last month
• Contrast-Security-OSS / safelog4j
  Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning …
  ☆43Updated last year
• OWASP / cwe-tool
  A command line CWE discovery tool based on OWASP / CAPSEC database of Common Weakness Enumeration.
  ☆62Updated 3 months ago
• google / plusfish
  Plusfish is a classic web application vulnerability scanner/fuzzer and aimed at security professionals
  ☆28Updated 3 years ago
• BBVA / patton
  The clever vulnerability dependency finder
  ☆96Updated 3 years ago