Alternatives and similar repositories for advisory-database

Users that are interested in advisory-database are comparing it to the libraries listed below

• CVEProject / cvelist
  Pilot program for CVE submission through GitHub. CVE Record Submission via Pilot PRs ending 6/30/2023
  ☆1,487Updated 2 months ago
• google / osv.dev
  Open source vulnerability DB and triage service.
  ☆1,937Updated last week
• ossf / package-analysis
  Open Source Package Analysis
  ☆836Updated 3 months ago
• CVEProject / cve-schema
  This repository is used for the development of the CVE JSON record format. Releases of the CVE JSON record format will also be published …
  ☆339Updated 3 weeks ago
• github / codeql-action
  Actions for running CodeQL analysis
  ☆1,315Updated this week
• CloudSecurityAlliance / gsd-database
  Global Security Database
  ☆319Updated last year
• github / securitylab
  Resources related to GitHub Security Lab
  ☆1,519Updated 2 weeks ago
• github / codeql-cli-binaries
  Binaries for the CodeQL CLI
  ☆857Updated last week
• ossf / allstar
  GitHub App to set and enforce security policies
  ☆1,347Updated 2 weeks ago
• guacsec / guac
  GUAC aggregates software security metadata into a high fidelity graph database.
  ☆1,389Updated last week
• google / log4jscanner
  A log4j vulnerability filesystem scanner and Go package for analyzing JAR files.
  ☆1,569Updated 3 years ago
• github / vscode-codeql-starter
  Starter workspace to use with the CodeQL extension for Visual Studio Code.
  ☆534Updated last week
• owasp-dep-scan / dep-scan
  OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for …
  ☆1,150Updated this week
• DataDog / guarddog
  GuardDog is a CLI tool to Identify malicious PyPI and npm packages
  ☆778Updated 2 weeks ago
• github / vscode-codeql
  An extension for Visual Studio Code that adds rich language support for CodeQL
  ☆462Updated this week
• CVEProject / cvelistV5
  CVE cache of the official CVE List in CVE JSON 5 format
  ☆2,180Updated this week
• cisagov / log4j-affected-db
  A community sourced list of log4j-affected software
  ☆1,124Updated 2 years ago
• slsa-framework / slsa
  Supply-chain Levels for Software Artifacts
  ☆1,703Updated last week
• ShiftLeftSecurity / sast-scan
  Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…
  ☆847Updated last year
• ossf / osv-schema
  Open Source Vulnerability schema.
  ☆205Updated this week
• cisagov / vulnrichment
  A repo to conduct vulnerability enrichment.
  ☆662Updated this week
• semgrep / semgrep-rules
  Semgrep Community Edition rules, maintained by Semgrep and the community. Free to use under the Semgrep Rules License.
  ☆953Updated this week
• intel / cve-bin-tool
  The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 350 common, vulnera…
  ☆1,478Updated this week
• google / clusterfuzzlite
  ClusterFuzzLite - Simple continuous fuzzing that runs in CI.
  ☆493Updated 8 months ago
• OWASP / threat-dragon
  An open source threat modeling tool from OWASP
  ☆1,149Updated this week
• nickboucher / trojan-source
  Trojan Source: Invisible Vulnerabilities
  ☆1,265Updated 2 years ago
• cisagov / RedEye
  RedEye is a visual analytic tool supporting Red & Blue Team operations
  ☆2,729Updated last year
• google / osv-scanner
  Vulnerability scanner written in Go which uses the data provided by https://osv.dev
  ☆7,592Updated this week
• CVEProject / cve-services
  This repo contains the source for the CVE Services API.
  ☆208Updated this week
• google / certificate-transparency-go
  Auditing for TLS certificates (Go code)
  ☆1,020Updated this week