stevespringett / CPE-Parser
A utility for validating and parsing Common Platform Enumeration (CPE) v2.2 and v2.3 as originally defined by MITRE and maintained by NIST
☆48Updated last month
Alternatives and similar repositories for CPE-Parser:
Users that are interested in CPE-Parser are comparing it to the libraries listed below
- CycloneDX SBOM Model and Utils for Creating and Validating BOMs☆86Updated this week
- Evaluation Framework for Dependency Analysis (EFDA)☆43Updated 2 years ago
- A simple Java command-line utility to mirror the entire contents of VulnDB.☆44Updated 2 months ago
- A Java library for calculating CVSSv2 and CVSSv3 scores and vectors☆44Updated 2 months ago
- Externalize Java application access to protected resources as log messages.☆40Updated 9 months ago
- CVE Automation Working Group☆165Updated this week
- A cli that can be used to query various online vulnerability sources such as the NVD or GHSA. The CLI and docker images can be used to mi…☆137Updated this week
- Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects☆307Updated 2 weeks ago
- Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning …☆41Updated 8 months ago
- Software Component Verification Standard (SCVS)☆140Updated 10 months ago
- Tools for conducting analysis of CVE data in Elasticsearch☆74Updated 7 months ago
- Report missing advisories and corrections on OSS Index☆17Updated 2 years ago
- IVA is a system to scan for known vulnerabilities in software products installed inside an organization. IVA uses CPE identifiers to sear…☆65Updated 3 years ago
- The OpenSSF CVE Benchmark consists of code and metadata for over 200 real life CVEs, as well as tooling to analyze the vulnerable codebas…☆141Updated 11 months ago
- PURL to CPE Relationship mapping project.☆82Updated this week
- ☆113Updated 8 months ago
- Examples and proof-of-concept for Software Bill of Materials (SBOM) code & data☆57Updated 10 months ago
- The OpenSSF Vulnerability Disclosures Working Group seeks to help improve the overall security of the open source software ecosystem by h…☆183Updated this week
- An opinionated scaffolding framework that jumpstarts Java projects with an API-first design, secure defaults, and minimal dependencies☆62Updated this week
- Build a local copy of CPE(Common Platform Enumeration)☆96Updated this week
- A place to systematically store software bill of materials (SBOM) documents.☆44Updated last year
- Open Source Vulnerability schema.☆191Updated last week
- Stakeholder-Specific Vulnerability Categorization☆136Updated this week
- CVSS2/3/4 library with interactive calculator for Python 2 and Python 3☆89Updated last week
- A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…☆75Updated last month
- Vulnogram is a tool for creating and editing CVE information in CVE JSON format☆170Updated last month
- Utility that provides an API platform for validating, querying and managing BOM data☆102Updated 3 months ago
- SBOM Assembler - A tool to edit SBOM or assemble multiple sboms into a single sbom.☆62Updated this week
- Java/JVM implementation of the package url spec☆26Updated 8 months ago
- Secvisogram is a web tool for creating and editing security advisories in the CSAF 2.0 format☆20Updated 3 weeks ago