github / advisory-database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
☆1,798Updated this week
Alternatives and similar repositories for advisory-database:
Users that are interested in advisory-database are comparing it to the libraries listed below
- Open source vulnerability DB and triage service.☆1,664Updated this week
- Pilot program for CVE submission through GitHub. CVE Record Submission via Pilot PRs ending 6/30/2023☆1,384Updated this week
- Open Source Package Analysis☆809Updated 2 weeks ago
- Global Security Database☆315Updated 9 months ago
- Actions for running CodeQL analysis☆1,194Updated this week
- Binaries for the CodeQL CLI☆772Updated this week
- CVE cache of the official CVE List in CVE JSON 5 format☆888Updated this week
- ClusterFuzzLite - Simple continuous fuzzing that runs in CI.☆465Updated last month
- OpenSSF Scorecard - Security health metrics for Open Source☆4,745Updated this week
- Open Source Vulnerability schema.☆190Updated last week
- GitHub App to set and enforce security policies☆1,273Updated this week
- vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios through Exercises.☆1,199Updated 2 weeks ago
- RESTler is the first stateful REST API fuzzing tool for automatically testing cloud services through their REST APIs and finding security…☆2,660Updated this week
- An extension for Visual Studio Code that adds rich language support for CodeQL☆435Updated this week
- Starter workspace to use with the CodeQL extension for Visual Studio Code.☆508Updated this week
- 🦄🔒 Awesome list of secrets in environment variables 🖥️☆867Updated 2 years ago
- Scan is a free & Open Source DevSecOps tool for performing static analysis based security testing of your applications and its dependenci…☆822Updated last year
- The SBOM tool is a highly scalable and enterprise ready tool to create SPDX 2.2 compatible SBOMs for any variety of artifacts.☆1,688Updated this week
- GUAC aggregates software security metadata into a high fidelity graph database.☆1,316Updated this week
- NVD, Ubuntu, Alpine☆416Updated this week
- Resources related to GitHub Security Lab☆1,442Updated 3 weeks ago
- Vulnerability scanner written in Go which uses the data provided by https://osv.dev☆6,462Updated this week
- The CodeQL extractor and libraries for Go.☆466Updated 2 years ago
- API Security Project aims to present unique attack & defense methods in API Security field☆1,368Updated 10 months ago
- Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners with One Report (Code, IaC) - Betterscan☆840Updated this week
- Vulnerable app with examples showing how to not use secrets☆1,263Updated this week
- OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for …☆1,054Updated last month
- Granular, Actionable Adversary Emulation for the Cloud☆1,895Updated this week
- A log4j vulnerability filesystem scanner and Go package for analyzing JAR files.☆1,569Updated 2 years ago
- CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security☆7,936Updated this week