Alternatives and similar repositories for go-cvss

Users that are interested in go-cvss are comparing it to the libraries listed below

• pandatix / nvdapi
  Unofficial but convenient Go wrapper around the NVD REST JSON API
  ☆36Updated 2 months ago
• smithy-security / smithy
  The security workflow engine!
  ☆136Updated last month
• kondukto-io / kntrl
  kntrl is an eBPF based runtime agent that monitors and prevents anomalous behaviour defined by you on your pipeline. kntrl achieves this …
  ☆125Updated 3 months ago
• mchmarny / s3cme
  Template Go app repo with local test/lint/build/vulnerability check workflow, and on tag image test/build/release pipelines, with ko gene…
  ☆104Updated last year
• bullfrogsec / bullfrog
  Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows
  ☆114Updated this week
• bradleyjkemp / sigma-go
  A Go implementation and parser for Sigma rules.
  ☆93Updated 7 months ago
• Zeerg / helix-honeypot
  K8s API Honeypot with Active Defense Capabilities
  ☆44Updated 2 years ago
• anchore / vunnel
  Tool for collecting vulnerability data from various sources (used to build the grype database)
  ☆109Updated this week
• google / osv-scalibr
  OSV-SCALIBR: A library for Software Composition Analysis
  ☆553Updated this week
• google / localtoast
  ☆115Updated 4 months ago
• bgeesaman / malicious-compliance
  Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"
  ☆67Updated 2 years ago
• doyensec / safeurl
  A Server Side Request Forgery (SSRF) protection library. Made with 🖤 by Doyensec LLC.
  ☆111Updated 7 months ago
• threatcl / threatcl
  Documenting your Threat Models with HCL
  ☆454Updated 2 weeks ago
• synacktiv / nord-stream
  Nord Stream is a tool that allows you to extract secrets stored inside CI/CD environments by deploying malicious pipelines. It currently …
  ☆315Updated 3 months ago
• in-toto / go-witness
  Go implementation of witness
  ☆42Updated this week
• blackberry / Falco-bypasses
  Research on various techniques to bypass default falco ruleset (based on falco v0.28.1).
  ☆88Updated last year
• DataDog / attache
  Attaché provides an emulation layer for Cloud Provider IMDS APIs
  ☆60Updated last year
• telophasehq / go-ocsf
  ☆75Updated 2 months ago
• chainguard-dev / justtrustme
  ☆56Updated 3 weeks ago
• ReversecLabs / IceKube
  ☆183Updated 8 months ago
• in-toto / witness
  Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact pro…
  ☆511Updated last week
• DataDog / supply-chain-firewall
  Supply-Chain Firewall (SCFW) is a tool for preventing the installation of malicious npm and PyPI packages
  ☆210Updated this week
• wiz-sec-public / namespacehound
  NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.
  ☆111Updated last year
• aquasecurity / go-dep-parser
  Dependency Parser for Multiple Programming Languages
  ☆148Updated last year
• openvex / spec
  OpenVEX Specification
  ☆164Updated 7 months ago
• openvex / vexctl
  A tool to create, transform and attest VEX metadata
  ☆170Updated 2 weeks ago
• t0sche / cvss-bt
  Enriching the NVD CVSS scores to include Temporal & Threat Metrics
  ☆214Updated this week
• chainguard-dev / malcontent
  #supply #chain #attack #detection
  ☆635Updated last week
• cisagov / kev-data
  Mirror of cisa.gov/kev data files
  ☆64Updated last week
• testifysec / solarsploit
  Red team tool that emulates the SolarWinds CI compromise attack vector.
  ☆24Updated last year