Alternatives and similar repositories for cvedb

Users that are interested in cvedb are comparing it to the libraries listed below

• OSSIndex / vulns
  Report missing advisories and corrections on OSS Index
  ☆17Updated 2 years ago
• swagitda / security-decision-trees-graphviz
  Decision trees generated via Graphviz to inform pragmatic threat modelling.
  ☆11Updated 4 years ago
• ossf / Project-Security-Metrics
  Collect, curate, and communicate relevant security metrics for open source projects.
  ☆63Updated last year
• OWASP / Cloud-Native-Application-Security-Top-10
  ☆21Updated 7 years ago
• zapbot / zap-mgmt-scripts
  ZAP Management Scripts
  ☆23Updated 3 weeks ago
• vmware-archive / kube-recon
  Reconnaissance test in Kubernetes clusters
  ☆21Updated 7 years ago
• zaproxy / zest
  ☆107Updated last week
• ttarvis / glasgo
  A Security Scanner for Go
  ☆26Updated 6 years ago
• google / gke-auditor
  ☆74Updated 5 years ago
• RedHatProductSecurity / cvelib
  A Python library and command line interface for CVE Services.
  ☆69Updated last month
• ossf / security-reviews
  A community collection of security reviews of open source software components.
  ☆95Updated last year
• chainguard-dev / bom-shelter
  A place to systematically store software bill of materials (SBOM) documents.
  ☆47Updated 2 years ago
• lightspin-tech / red-bucket-gcp
  ☆10Updated 3 years ago
• nccgroup / ConMachi
  Container Blackbox Security Auditing Tool: enumerates security configuration from within the target container
  ☆105Updated 6 years ago
• CERTCC / VINCE
  VINCE is the Vulnerability Information and Coordination Environment developed and used by the CERT Coordination Center to improve coordin…
  ☆81Updated 3 weeks ago
• google / plusfish
  Plusfish is a classic web application vulnerability scanner/fuzzer and aimed at security professionals
  ☆28Updated 3 years ago
• DevSlop / pixi-crs
  CI Pipeline with Pixi, the WAF OWASP Core Rule Set and TestCafe tests.
  ☆15Updated 4 years ago
• docker-archive / oscalkit
  NIST OSCAL SDK and CLI
  ☆38Updated 5 years ago
• google / security-crawl-maze
  Security Crawl Maze is a comprehensive testbed for web security crawlers. It contains pages representing many ways in which one can link …
  ☆164Updated last year
• philips-software / license-scanner
  Service to scan licenses from source code
  ☆12Updated 2 years ago
• thought-machine / dracon
  Security scanning & static analysis tool
  ☆93Updated last year
• stanford-esrg / stratosphere
  Stratosphere uses password generation algorithms to discover publicly accessible cloud storage buckets.
  ☆30Updated 4 years ago
• csaf-tools / CVRF-CSAF-Converter
  A CVRF CSAF Converter, taking care about OASIS specification.
  ☆10Updated 4 months ago
• redteam-project / red-container
  Containerized pentesting tools
  ☆45Updated 3 years ago
• CERTCC / Vulnerability-Data-Archive
  With the hope that someone finds the data useful, we used to periodically publish an archive of almost all of the non-sensitive vulnerabi…
  ☆95Updated last year
• antitree / keyctl-unmask
  Going Florida on container keyring masks. A tool to demonstrate the ineffectivity containers have on isolating Linux Kernel keyrings.
  ☆44Updated last week
• OWASP-Foundation / Project-Handbook
  This is a working copy of the OWASP Project Handbook and is the draft where changes are made before publishing a final version on the OWA…
  ☆17Updated 8 years ago
• stevespringett / vulndb-data-mirror
  A simple Java command-line utility to mirror the entire contents of VulnDB.
  ☆48Updated 3 months ago
• eBay / DASTProxy
  ☆59Updated 9 months ago
• semgrep / semgrep-docs
  Documentation of Semgrep: a fast, open-source, static analysis tool.
  ☆44Updated this week