Alternatives and similar repositories for ossaudit:

Users that are interested in ossaudit are comparing it to the libraries listed below

• ochronasec / ochrona-cli
  A command line tool for detecting vulnerabilities in Python dependencies and doing safe package installs
  ☆52Updated last year
• snyk / faker-security
  Python Faker provider for security related data
  ☆37Updated 6 months ago
• jhermann / dependency-check-py
  Shim to easily install OWASP dependency-check-cli into Python projects
  ☆49Updated 3 years ago
• twu / skjold
  Security audit Python project dependencies against security advisory databases.
  ☆67Updated 4 months ago
• RedHatProductSecurity / advisory-parser
  A library for parsing security advisories
  ☆13Updated 5 months ago
• zapbot / zap-mgmt-scripts
  ZAP Management Scripts
  ☆23Updated this week
• Contrast-Security-OSS / DjanGoat
  Python and Django implementation of the OWASP RailsGoat project
  ☆73Updated 7 months ago
• vectra-ai-research / log4j-aws-sandbox
  A set of AWS resources for testing the Log4Shell vulnerability, deployable with terraform
  ☆12Updated 3 years ago
• duo-labs / narrow
  Low-effort reachability analysis for third-party code vulnerabilities.
  ☆20Updated last year
• DevSlop / pixi-crs
  CI Pipeline with Pixi, the WAF OWASP Core Rule Set and TestCafe tests.
  ☆15Updated 3 years ago
• nccgroup / SFPolDevChk
  Salesforce Policy Deviation Checker
  ☆30Updated 4 years ago
• sonatype-nexus-community / jake
  Check your Python environments for vulnerable Open Source packages with OSS Index or Sonatype Nexus Lifecycle.
  ☆118Updated 3 months ago
• FIRSTdotorg / epss
  Exploit Prediction Scoring System (EPSS)
  ☆24Updated 2 years ago
• csaf-tools / CVRF-CSAF-Converter
  A CVRF CSAF Converter, taking care about OASIS specification.
  ☆10Updated last month
• ptdropper / CVE-Scanner-for-your-SW-BOM
  CVE Vulnerability scanner of your software bill of materials (SBOM). ASCII text input.
  ☆17Updated 4 years ago
• lightspin-tech / red-bucket-gcp
  ☆10Updated 2 years ago
• Threagile / run-threagile-action
  GitHub action to run Threagile, the agile threat modeling toolkit, on a repo's threagile.yaml file
  ☆13Updated 9 months ago
• ttarvis / glasgo
  A Security Scanner for Go
  ☆26Updated 6 years ago
• apiiro / combobulator
  Dependency Combobulator
  ☆89Updated last year
• Acheron-VAF / Vulnerability-Assessment-Framework
  ☆11Updated 8 years ago
• rusakovichma / TicTaaC
  Easy-to-use Threat modeling-as-a-Code (TaaC) solution following DevSecOps principles. Simple CI/CD integration as well as console usage. …
  ☆61Updated 7 months ago
• DefectDojo / Community-Contribs
  DefectDojo Community Content
  ☆17Updated 4 months ago
• jgamblin / CVElk
  Autoconfigured ELK Stack That Contains All EPSS and NVD CVE Data
  ☆49Updated 7 months ago
• stacscan / stacs
  Static Token And Credential Scanner
  ☆96Updated last year
• franksec42 / Vulnerability-management-maturity
  Maturity Model Collaborative project
  ☆14Updated last year
• mllamazares / vulncov
  🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.
  ☆38Updated 2 months ago
• tilakthimmappa / pyraider
  Using PyRaider You can scan installed dependencies known security vulnerabilities. It uses publicly known exploits, vulnerabilities datab…
  ☆17Updated 2 years ago
• ShiftLeftSecurity / scan-docs
  ☆28Updated 2 years ago
• RedHatProductSecurity / cvelib
  A Python library and command line interface for CVE Services.
  ☆62Updated 3 weeks ago
• we45 / Vulnerable-Flask-App
  Intentionally Vulnerable Flask app for use in Demos
  ☆28Updated last month