Alternatives and similar repositories for ossaudit:

Users that are interested in ossaudit are comparing it to the libraries listed below

• ochronasec / ochrona-cli
  A command line tool for detecting vulnerabilities in Python dependencies and doing safe package installs
  ☆52Updated last year
• DevSlop / pixi-crs
  CI Pipeline with Pixi, the WAF OWASP Core Rule Set and TestCafe tests.
  ☆15Updated 3 years ago
• jhermann / dependency-check-py
  Shim to easily install OWASP dependency-check-cli into Python projects
  ☆49Updated 3 years ago
• cloudify-cosmo / surch
  Search Git Organizations or Repositories for strings
  ☆28Updated 4 years ago
• sonatype-nexus-community / jake
  Check your Python environments for vulnerable Open Source packages with OSS Index or Sonatype Nexus Lifecycle.
  ☆114Updated last month
• RedHatProductSecurity / cvelib
  A Python library and command line interface for CVE Services.
  ☆60Updated last week
• IQTLabs / pypi-scan
  Scan pypi for typosquatting
  ☆37Updated last year
• RedHatProductSecurity / advisory-parser
  A library for parsing security advisories
  ☆13Updated 3 months ago
• csaf-tools / CVRF-CSAF-Converter
  A CVRF CSAF Converter, taking care about OASIS specification.
  ☆10Updated last year
• nccgroup / SFPolDevChk
  Salesforce Policy Deviation Checker
  ☆30Updated 4 years ago
• RedHatProductSecurity / cvss
  CVSS2/3/4 library with interactive calculator for Python 2 and Python 3
  ☆88Updated last month
• snyk / faker-security
  Python Faker provider for security related data
  ☆37Updated 4 months ago
• crypsisgroup / ebs-direct-sec-tools
  Fun tools around the EBS Direct API
  ☆18Updated 3 years ago
• kaakaww / javaspringvulny
  javaspringvulny - a Spring Boot web application built wrong on purpose
  ☆19Updated last month
• Contrast-Security-OSS / DjanGoat
  Python and Django implementation of the OWASP RailsGoat project
  ☆72Updated 4 months ago
• Acheron-VAF / Vulnerability-Assessment-Framework
  ☆11Updated 7 years ago
• jpetrucciani / bandit-check
  github action to run the bandit security linter
  ☆14Updated 2 months ago
• OSSIndex / vulns
  Report missing advisories and corrections on OSS Index
  ☆17Updated last year
• duo-labs / narrow
  Low-effort reachability analysis for third-party code vulnerabilities.
  ☆20Updated last year
• mllamazares / vulncov
  🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.
  ☆34Updated this week
• rsc-dev / pypi_malware
  PyPI malware packages
  ☆58Updated 6 years ago
• CERTCC / VINCE
  VINCE is the Vulnerability Information and Coordination Environment developed and used by the CERT Coordination Center to improve coordin…
  ☆59Updated this week
• ThreatResponse / ThreatPrep
  Python module for evaluation of AWS account best practices around incident handling readieness.
  ☆55Updated 4 years ago
• jgamblin / CISA_Enrichment
  CISA Known Exploited Vulnerabilities Catalog Enrichment
  ☆18Updated 5 months ago
• ossf / security-reviews
  A community collection of security reviews of open source software components.
  ☆92Updated 9 months ago
• LLNL / Surfactant
  Modular framework for file information extraction and dependency analysis to generate accurate SBOMs
  ☆25Updated this week
• DefectDojo / Community-Contribs
  DefectDojo Community Content
  ☆17Updated 2 months ago
• twu / skjold
  Security audit Python project dependencies against security advisory databases.
  ☆67Updated 2 months ago
• ttarvis / glasgo
  A Security Scanner for Go
  ☆26Updated 5 years ago
• anunay-bhatt / secure-serverless-reference-architecture
  A walkthrough of security controls for a serverless architecture via a demo application
  ☆11Updated 2 years ago