Alternatives and similar repositories for vulndb-data-mirror

Users that are interested in vulndb-data-mirror are comparing it to the libraries listed below

• stevespringett / nist-data-mirror
  A simple Java command-line utility to mirror the CVE JSON data from NIST.
  ☆214Updated 3 years ago
• stevespringett / CPE-Parser
  A utility for validating and parsing Common Platform Enumeration (CPE) v2.2 and v2.3 as originally defined by MITRE and maintained by NIS…
  ☆54Updated last week
• stevespringett / cvss-calculator
  A Java library for calculating CVSSv2, CVSSv3, and CVSSv4 scores and vectors
  ☆50Updated last week
• victims / maven-security-versions
  Identify vulnerable libraries in Maven dependencies
  ☆46Updated 3 years ago
• srcclr / efda
  Evaluation Framework for Dependency Analysis (EFDA)
  ☆44Updated 3 years ago
• Contrast-Security-OSS / contrast-rO0
  A tiny Java agent that blocks attacks against unsafe deserialization
  ☆86Updated 8 years ago
• joshbressers / cve-analysis
  Tools for conducting analysis of CVE data in Elasticsearch
  ☆73Updated 5 months ago
• OWASP / sonarqube
  OWASP SonarQube Project
  ☆111Updated 6 years ago
• stevespringett / Alpine
  An opinionated scaffolding framework that jumpstarts Java projects with an API-first design, secure defaults, and minimal dependencies
  ☆68Updated last week
• eclipse-jbom / jbom
  ☆120Updated 9 months ago
• CycloneDX / cyclonedx-core-java
  CycloneDX SBOM Model and Utils for Creating and Validating BOMs
  ☆101Updated last month
• Contrast-Security-OSS / safelog4j
  Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning …
  ☆43Updated 3 months ago
• joval / jOVAL
  An open-source JAXB data model for SCAP specification formats.
  ☆58Updated 3 years ago
• jeremylong / open-vulnerability-cli
  A cli that can be used to query various online vulnerability sources such as the NVD or GHSA. The CLI and docker images can be used to mi…
  ☆154Updated last week
• fabric8-analytics / cvedb
  CVE database
  ☆21Updated 5 years ago
• codedx / codepulse
  Code Pulse is a real-time code coverage tool for penetration testing activities
  ☆122Updated 3 years ago
• thesp0nge / owasp-orizon
  Owasp Orizon is a source code static analyzer tool designed to spot security issues in Java applications.
  ☆146Updated 8 years ago
• sysflow-telemetry / sysflow
  SysFlow documentation and issues tracker
  ☆46Updated last year
• OSSIndex / vulns
  Report missing advisories and corrections on OSS Index
  ☆17Updated 2 years ago
• cve-search / VIA4CVE
  Vulnerability Information Aggregator for CVEs
  ☆124Updated 6 years ago
• OtherDevOpsGene / zap-sonar-plugin
  Integrates OWASP Zed Attack Proxy reports into SonarQube
  ☆73Updated 5 months ago
• oasis-open / csaf-parser
  OASIS TC Open Repository: CSAF Parser tool for parsing and checking the syntax of the Common Vulnerability Reporting Framework (CVRF) con…
  ☆23Updated 3 years ago
• aquasecurity / vuln-list-update
  ☆190Updated last month
• Morningstar / GoASQ
  General Open Architecture Security Questionnaire
  ☆31Updated 2 years ago
• ptdropper / CVE-Scanner-for-your-SW-BOM
  CVE Vulnerability scanner of your software bill of materials (SBOM). ASCII text input.
  ☆17Updated 5 years ago
• ossec / ossec-rules
  A repository for OSSEC rules and decoders
  ☆54Updated 2 years ago
• blackducksoftware / detect
  Scanning and analysis for Black Duck SCA products.
  ☆188Updated this week
• stevespringett / threatmodel-sdk
  A Java library for parsing and programmatically using threat models
  ☆82Updated 2 years ago
• kantega / notsoserial
  Java Agent which mitigates deserialisation attacks by making certain classes unserializable
  ☆191Updated 9 years ago
• meta-fun / awesome-software-supply-chain-security
  Sharing software supply chain security open source projects
  ☆53Updated 3 years ago