github / advisory-databaseLinks
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
☆1,879Updated this week
Alternatives and similar repositories for advisory-database
Users that are interested in advisory-database are comparing it to the libraries listed below
Sorting:
- Pilot program for CVE submission through GitHub. CVE Record Submission via Pilot PRs ending 6/30/2023☆1,475Updated this week
- Open Source Package Analysis☆834Updated last month
- Resources related to GitHub Security Lab☆1,482Updated last week
- Semgrep Community Edition rules, maintained by Semgrep and the community. Free to use under the Semgrep Rules License.☆916Updated this week
- Binaries for the CodeQL CLI☆823Updated 2 weeks ago
- Open source vulnerability DB and triage service.☆1,881Updated this week
- Starter workspace to use with the CodeQL extension for Visual Studio Code.☆523Updated 2 weeks ago
- ClusterFuzzLite - Simple continuous fuzzing that runs in CI.☆488Updated 6 months ago
- Actions for running CodeQL analysis☆1,264Updated this week
- An extension for Visual Studio Code that adds rich language support for CodeQL☆458Updated this week
- This repository is used for the development of the CVE JSON record format. Releases of the CVE JSON record format will also be published …☆318Updated 2 weeks ago
- The CodeQL extractor and libraries for Go.☆463Updated 2 years ago
- A log4j vulnerability filesystem scanner and Go package for analyzing JAR files.☆1,567Updated 2 years ago
- Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…☆841Updated last year
- GitHub App to set and enforce security policies☆1,326Updated last week
- A community sourced list of log4j-affected software☆1,125Updated 2 years ago
- API Security Project aims to present unique attack & defense methods in API Security field☆1,387Updated last year
- GUAC aggregates software security metadata into a high fidelity graph database.☆1,364Updated this week
- Supply-chain Levels for Software Artifacts☆1,667Updated last week
- A repository of reports of malicious packages identified in Open Source package repositories, consumable via the Open Source Vulnerabilit…☆310Updated this week
- Global Security Database☆318Updated last year
- This repo contains the source for the CVE Services API.☆198Updated this week
- RESTler is the first stateful REST API fuzzing tool for automatically testing cloud services through their REST APIs and finding security…☆2,733Updated last month
- Collection of tools for analyzing open source packages.☆339Updated last week
- Navigate the CVE jungle with ease.☆2,010Updated last month
- CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security☆8,353Updated this week
- OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for …☆1,117Updated this week
- Scans Software Bill of Materials (SBOMs) for security vulnerabilities☆569Updated 2 months ago
- Open Source Vulnerability schema.☆199Updated last week
- Secrets Patterns DB: The largest open-source Database for detecting secrets, API keys, passwords, tokens, and more.☆1,154Updated 2 weeks ago