Alternatives and similar repositories for vulndb-data-mirror

Users that are interested in vulndb-data-mirror are comparing it to the libraries listed below

• stevespringett / nist-data-mirror
  A simple Java command-line utility to mirror the CVE JSON data from NIST.
  ☆211Updated 3 years ago
• stevespringett / CPE-Parser
  A utility for validating and parsing Common Platform Enumeration (CPE) v2.2 and v2.3 as originally defined by MITRE and maintained by NIS…
  ☆53Updated last week
• victims / maven-security-versions
  Identify vulnerable libraries in Maven dependencies
  ☆46Updated 2 years ago
• codedx / codepulse
  Code Pulse is a real-time code coverage tool for penetration testing activities
  ☆122Updated 2 years ago
• Contrast-Security-OSS / contrast-rO0
  A tiny Java agent that blocks attacks against unsafe deserialization
  ☆86Updated 8 years ago
• Contrast-Security-OSS / safelog4j
  Safelog4j is an instrumentation-based security tool to help teams discover, verify, and solve log4shell vulnerabilities without scanning …
  ☆43Updated last month
• stevespringett / cvss-calculator
  A Java library for calculating CVSSv2, CVSSv3, and CVSSv4 scores and vectors
  ☆49Updated last week
• CycloneDX / cyclonedx-core-java
  CycloneDX SBOM Model and Utils for Creating and Validating BOMs
  ☆99Updated last week
• eBay / DASTProxy
  ☆59Updated 10 months ago
• eclipse-jbom / jbom
  ☆119Updated 7 months ago
• jeremylong / open-vulnerability-cli
  A cli that can be used to query various online vulnerability sources such as the NVD or GHSA. The CLI and docker images can be used to mi…
  ☆153Updated 2 weeks ago
• OtherDevOpsGene / zap-sonar-plugin
  Integrates OWASP Zed Attack Proxy reports into SonarQube
  ☆72Updated 3 months ago
• pmckeown / dependency-track-maven-plugin
  Maven plugin that integrates with a Dependency Track server to submit dependency manifests and optionally fail execution when vulnerable …
  ☆72Updated last month
• OWASP / sonarqube
  OWASP SonarQube Project
  ☆111Updated 6 years ago
• stevespringett / Alpine
  An opinionated scaffolding framework that jumpstarts Java projects with an API-first design, secure defaults, and minimal dependencies
  ☆65Updated last week
• joshbressers / cve-analysis
  Tools for conducting analysis of CVE data in Elasticsearch
  ☆73Updated 3 months ago
• snyk / snyk-maven-plugin
  Test and monitor your projects for vulnerabilities with Maven. This plugin is officially maintained by Snyk.
  ☆82Updated 3 weeks ago
• kantega / notsoserial
  Java Agent which mitigates deserialisation attacks by making certain classes unserializable
  ☆191Updated 9 years ago
• cschneider4711 / SWAT
  Serial Whitelist Application Trainer
  ☆30Updated 6 years ago
• joval / jOVAL
  An open-source JAXB data model for SCAP specification formats.
  ☆58Updated 3 years ago
• blackducksoftware / detect
  Scanning and analysis for Black Duck SCA products.
  ☆187Updated this week
• xfhg / intercept
  INTERCEPT / Policy as Code Auditing & Compliance
  ☆86Updated 3 weeks ago
• magnologan / awesome-sca
  A comprehensive list of software composition analysis tools.
  ☆157Updated 3 weeks ago
• srcclr / efda
  Evaluation Framework for Dependency Analysis (EFDA)
  ☆44Updated 3 years ago
• OWASP / Software-Component-Verification-Standard
  Software Component Verification Standard (SCVS)
  ☆150Updated 7 months ago
• Morningstar / GoASQ
  General Open Architecture Security Questionnaire
  ☆32Updated 2 years ago
• spoofzu / jvmxray
  Externalize Java application access to protected resources as log messages.
  ☆43Updated 3 weeks ago
• stevespringett / threatmodel-sdk
  A Java library for parsing and programmatically using threat models
  ☆81Updated 2 years ago
• CycloneDX / cyclonedx-maven-plugin
  Creates CycloneDX Software Bill of Materials (SBOM) from Maven projects
  ☆343Updated last week
• thesp0nge / owasp-orizon
  Owasp Orizon is a source code static analyzer tool designed to spot security issues in Java applications.
  ☆146Updated 8 years ago