Alternatives and similar repositories for ossaudit

Users that are interested in ossaudit are comparing it to the libraries listed below

• RedHatProductSecurity / cvss
  CVSS2/3/4 library with interactive calculator for Python 2 and Python 3
  ☆114Updated 4 months ago
• ochronasec / ochrona-cli
  A command line tool for detecting vulnerabilities in Python dependencies and doing safe package installs
  ☆51Updated 2 years ago
• ShiftLeftSecurity / scan-docs
  ☆27Updated 3 years ago
• sonatype-nexus-community / jake
  Check your Python environments for vulnerable Open Source packages with OSS Index or Sonatype Nexus Lifecycle.
  ☆132Updated 6 months ago
• jhermann / dependency-check-py
  Shim to easily install OWASP dependency-check-cli into Python projects
  ☆50Updated 4 years ago
• snyk / faker-security
  Python Faker provider for security related data
  ☆40Updated 4 months ago
• ptdropper / CVE-Scanner-for-your-SW-BOM
  CVE Vulnerability scanner of your software bill of materials (SBOM). ASCII text input.
  ☆17Updated 5 years ago
• Yelp / fuzz-lightyear
  A pytest-inspired, DAST framework, capable of identifying vulnerabilities in a distributed, micro-service ecosystem through chaos enginee…
  ☆227Updated last year
• RedHatProductSecurity / advisory-parser
  A library for parsing security advisories
  ☆13Updated 5 months ago
• tilakthimmappa / pyraider
  Using PyRaider You can scan installed dependencies known security vulnerabilities. It uses publicly known exploits, vulnerabilities datab…
  ☆17Updated 3 years ago
• sbomtools / apt2sbom
  apt2sbom python package generates SPDX or CycloneDX files from Ubuntu APT and Python packaging information
  ☆25Updated 3 years ago
• twu / skjold
  Security audit Python project dependencies against security advisory databases.
  ☆66Updated 4 months ago
• csaf-tools / CVRF-CSAF-Converter
  A CVRF CSAF Converter, taking care about OASIS specification.
  ☆10Updated 6 months ago
• AppThreat / vulnerability-db
  Vulnerability database and package search for sources such as Linux, OSV, NVD, GitHub and npm. Powered by sqlite, CVE 5.2, purl, and vers…
  ☆133Updated last week
• zapbot / zap-mgmt-scripts
  ZAP Management Scripts
  ☆23Updated last week
• DevSlop / pixi-crs
  CI Pipeline with Pixi, the WAF OWASP Core Rule Set and TestCafe tests.
  ☆15Updated 4 years ago
• IQTLabs / pypi-scan
  Scan pypi for typosquatting
  ☆38Updated 2 years ago
• duo-labs / narrow
  Low-effort reachability analysis for third-party code vulnerabilities.
  ☆22Updated 2 years ago
• Contrast-Security-OSS / DjanGoat
  Python and Django implementation of the OWASP RailsGoat project
  ☆75Updated 2 months ago
• jordan-wright / ossmalware
  ☆93Updated 3 years ago
• llnl / Surfactant
  Modular framework for file information extraction and dependency analysis to generate accurate SBOMs
  ☆37Updated last week
• jpetrucciani / bandit-check
  github action to run the bandit security linter
  ☆15Updated last month
• cve-search / PyCVESearch
  Python wrapper for the API of cve-search
  ☆127Updated 2 years ago
• aatlasis / cve_manager
  A python script that a) parses NIST NVD CVEs, b) prcoesses and exports them to CSV files, c) creates a postgres database and imports all …
  ☆78Updated 4 years ago
• we45 / Vulnerable-Flask-App
  Intentionally Vulnerable Flask app for use in Demos
  ☆33Updated 2 weeks ago
• ossf / security-reviews
  A community collection of security reviews of open source software components.
  ☆96Updated last year
• snyk / snyk-python-plugin
  Basic Snyk CLI plugin for Python support
  ☆21Updated last month
• cve-search / cpe-guesser
  Tool to guess CPE name based on common software name
  ☆108Updated 3 months ago
• Vulnogram / Vulnogram
  Vulnogram is the tool for reserving, managing, and publishing CVEs. Get started at vulnogram.org or deploy Docker edition for full enterp…
  ☆212Updated this week
• cve-search / CveXplore
  CveXplore
  ☆43Updated 3 months ago