stevespringett / CPE-Parser

Related projects ⓘ

Alternatives and complementary repositories for CPE-Parser

• stevespringett / vulndb-data-mirror
  A simple Java command-line utility to mirror the entire contents of VulnDB.
  ☆44Updated 2 weeks ago
• srcclr / efda
  Evaluation Framework for Dependency Analysis (EFDA)
  ☆42Updated 2 years ago
• CycloneDX / cyclonedx-core-java
  CycloneDX SBOM Model and Utils for Creating and Validating BOMs
  ☆81Updated this week
• jeremylong / Open-Vulnerability-Project
  Java libraries for working with available vulnerability data sources (GitHub Security Advisories, NVD, EPSS, CISA Known Exploited Vulnera…
  ☆123Updated this week
• stevespringett / cvss-calculator
  A Java library for calculating CVSSv2 and CVSSv3 scores and vectors
  ☆39Updated 2 weeks ago
• spoofzu / jvmxray
  Externalize Java application access to protected resources as log messages.
  ☆41Updated 6 months ago
• eclipse / jbom
  ☆111Updated 5 months ago
• joshbressers / cve-analysis
  Tools for conducting analysis of CVE data in Elasticsearch
  ☆74Updated 4 months ago
• CERTCC / SBOM
  Examples and proof-of-concept for Software Bill of Materials (SBOM) code & data
  ☆57Updated 7 months ago
• chainguard-dev / bom-shelter
  A place to systematically store software bill of materials (SBOM) documents.
  ☆44Updated last year
• joval / jOVAL
  An open-source JAXB data model for SCAP specification formats.
  ☆57Updated 2 years ago
• cve-search / VIA4CVE
  Vulnerability Information Aggregator for CVEs
  ☆118Updated 5 years ago
• spdx / cdx2spdx
  Utility that converts SBOM documents from CycloneDX to SPDX
  ☆29Updated 10 months ago
• Contrast-Security-OSS / safelog4j
  Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning …
  ☆41Updated 5 months ago
• scanoss / purl2cpe
  PURL to CPE Relationship mapping project.
  ☆78Updated this week
• OWASP / Software-Component-Verification-Standard
  Software Component Verification Standard (SCVS)
  ☆135Updated 7 months ago
• vulsio / go-cpe-dictionary
  Build a local copy of CPE(Common Platform Enumeration)
  ☆93Updated last week
• fkie-cad / iva
  IVA is a system to scan for known vulnerabilities in software products installed inside an organization. IVA uses CPE identifiers to sear…
  ☆64Updated 3 years ago
• stevespringett / Alpine
  An opinionated scaffolding framework that jumpstarts Java projects with an API-first design, secure defaults, and minimal dependencies
  ☆62Updated this week
• OSSIndex / vulns
  Report missing advisories and corrections on OSS Index
  ☆17Updated last year
• Morningstar / GoASQ
  General Open Architecture Security Questionnaire
  ☆31Updated last year
• nilp0inter / cpe
  CPE: Common Platform Enumeration for Python
  ☆92Updated last month
• CVEProject / automation-working-group
  CVE Automation Working Group
  ☆160Updated this week
• CycloneDX / sbom-utility
  Utility that provides an API platform for validating, querying and managing BOM data
  ☆95Updated this week
• CERTCC / VINCE
  VINCE is the Vulnerability Information and Coordination Environment developed and used by the CERT Coordination Center to improve coordin…
  ☆59Updated 3 weeks ago
• CycloneDX / cyclonedx-maven-plugin
  Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects
  ☆298Updated last week
• CERTCC / Vulnerability-Data-Archive
  With the hope that someone finds the data useful, we used to periodically publish an archive of almost all of the non-sensitive vulnerabi…
  ☆88Updated 6 months ago
• package-url / packageurl-java
  Java/JVM implementation of the package url spec
  ☆22Updated 5 months ago
• lirantal / cwe-sdk
  A Common Weakness Enumeration (CWE) Node.js SDK compliant with MITRE / CAPEC
  ☆10Updated 4 years ago
• ossf-cve-benchmark / ossf-cve-benchmark
  The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…
  ☆141Updated 8 months ago